.

Security + V ECH UK Question

<<

millwalll

Post Thu Mar 24, 2011 6:30 am

Security + V ECH UK Question

Hi All,

I am trying to break into Penetration testing. I am currently studying for CISSP and doing the Hackingdojo classes too I have just passed OSWP exam. I am trying to take my next step but I am not sure what course would be best.

So my question is what certification do UK companies look for more ECH or Security + or would I be better off doing OSPC?

And what course would be more beneficial for a pen tester? Looking at security + it looks more about general security then pen testing. But they are bringing a new version out in May.

Thanks
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Thu Mar 24, 2011 6:38 am

Re: Security + V ECH UK Question

We've got some people here from the UK that should be able to give you some solid advice but I believe the ones that are respected (or required?) are CREST, CHECK and TIGER Scheme.
<<

millwalll

Post Thu Mar 24, 2011 6:52 am

Re: Security + V ECH UK Question

CREST is my main aim but I lack the expierence at the moment. So I am looking to do courses that will appeal to companies. Then I hope they will take me on as junior so I can gain expirence and do CREST. As I dont think there is any training material for CREST
<<

AndyB67

User avatar

Full Member
Full Member

Posts: 100

Joined: Fri Jan 14, 2011 7:13 am

Location: UK

Post Thu Mar 24, 2011 2:07 pm

Re: Security + V ECH UK Question

You may want to enter the UK Cyber Challenge thats starting up at the end of this month.  There are quite a few UK companies going to be paying attention to whats happening after last years competition and it's a way of getting your face seen and known.  If you show you're keen, have some skill and are willing to learn then you can still get your foot in the door even if you don't win one of the big prizes

If you can, it's also worth going down to things like the european infosecurity expo in london next month (3 day event, 19-21 Apr).  You can do some serious networking there and get to talk through things with people in the trade.

I'd be going but i'm already going to B-Sides in london on the 20th and work won't let me skive off two days in a row to go on the lash in london!
Net+ Sec+ More to come
<<

millwalll

Post Thu Mar 24, 2011 3:56 pm

Re: Security + V ECH UK Question

Hi Andy,

Thanks for the reply. I took part in the UK cyber challenge last year but I only really had a look at it so will be taking part this year.

I am doing everything I can to get my face seen and know and already have my ticket for Info-sec Europe.

And I am in the situation where I do know some of the tools and in the right environment I know it would not take me long to pick things up.

What I am trying to do is train my self as best as I can, by doing security courses that will bring value to my CV. The main problem is knowing what UK companies see as worth while certificates. I know CISSP and CREST are most requirements for Pen testers and they are on my list but I don't really have the experience yet.

So was looking at Security + or ECH but not sure how much they would help me I have covered the security + and ECH material and felt I knew most of it already. So dont know if to go for OSPC but how recognized is this in the UK?
<<

AndyB67

User avatar

Full Member
Full Member

Posts: 100

Joined: Fri Jan 14, 2011 7:13 am

Location: UK

Post Thu Mar 24, 2011 4:50 pm

Re: Security + V ECH UK Question

Have a look at http://blog.jabawoki.com/ and look at his @Security section.  If you look at some of his comments in 08 (page 3 & 4), that may give you some of an idea.  If not, drop him a line and say that I sent you (Andy Baker) and he should be able to point you in the right direction.

If you look Jay up on linkedin - http://www.linkedin.com/in/jayabbott you'll see he's fairly well informed!!!

As far as I can tell the offensive security is recognised by the 'serious' security professionals but i'm not sure how well the HR people look at it yet?  Ask me in 15 months when I start job hunting!
Net+ Sec+ More to come
<<

millwalll

Post Thu Mar 24, 2011 5:17 pm

Re: Security + V ECH UK Question

Thanks Andy, I just had a look and was helpful I may contact him also and see if he has any more advice. Thanks for help mate
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Sat Mar 26, 2011 9:45 am

Re: Security + V ECH UK Question

What about the 7Safe stuff? They do courses on ethical hacking, forensics, etc., and their classes are CREST appoved.

I also know that the people at CREST are looking to go more global instead of just in the UK. So if they succeed, you would then have something required in the UK but also valued elsewhere.

Don
CISSP, MCSE, CSTA, Security+ SME
<<

millwalll

Post Sat Mar 26, 2011 4:39 pm

Re: Security + V ECH UK Question

Hi Don,

I have look seen there stuff and would love to do it. However I only work part time so cant really afford the £1500 for the course. So trying any course that don't break the bank at the moment.
<<

AndyB67

User avatar

Full Member
Full Member

Posts: 100

Joined: Fri Jan 14, 2011 7:13 am

Location: UK

Post Sun Mar 27, 2011 1:40 pm

Re: Security + V ECH UK Question

Know where you're coming from on that one millwalll.

I'm just lucky that i've got a training grant from work to use over the next two years. 

Going to start with the backtrack wifu as a 'fairly' easy (and cheap) warmup.  Looking at doing the CompTIA Sec+ in october to broaden my Sec knowledge then hit C|EH around spring after a winter of heavy reading/ playing with backtrack. 

WIFU should only cost me about £100 and Sec+ will cost me about £600 including exam, accomodation and food.  Should leave me with about £2k of my grant towards my C|EH so should only cost me a few hundred out of my own pocket!

Have to try plan my training round the horses and my son at the minute.  Try get it so my son is on school hols (otherwise we don't have enough leave to cover all his holidays).  Also need to plan for horses still being on 24hr turnout and wife not competing!!  Pain in the ass to juggle it all!
Net+ Sec+ More to come
<<

millwalll

Post Sun Mar 27, 2011 3:53 pm

Re: Security + V ECH UK Question

In same sort of boat Andy trying to get as many security certificates as I can.  I started off with OSWP and not sure what one is next but funds are a big problem for me.

I only work part time 16 hours a week so don't have the funds for most of the courses. I do want a full time job but rather it was as junior pen tester than anything else.

But would love to work my way to CREST certificate I thinking about doing ECH and Security + too. CISSP dont really want to do as its boring but maybe forced into it.
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Mon Mar 28, 2011 12:02 pm

Re: Security + V ECH UK Question

£600 for Security+? This is something easily done with self-study, so no need to spend $$$ on a course/bootcamp. Buy a book with some sample questions and do the exam.

Don
CISSP, MCSE, CSTA, Security+ SME
<<

millwalll

Post Mon Mar 28, 2011 12:40 pm

Re: Security + V ECH UK Question

I think Andy was buying the courseware. But as Don said it really not needed exam is £191 and self study I am thinking about doing it in April so 3 weeks self study then exam to keep cost down.
<<

AndyB67

User avatar

Full Member
Full Member

Posts: 100

Joined: Fri Jan 14, 2011 7:13 am

Location: UK

Post Mon Mar 28, 2011 1:28 pm

Re: Security + V ECH UK Question

I'm doing a 'taught' course with a tutor (not boot camp) as self study at the moment is very difficult. 

My wifew works shifts, son has a lot of things he needs taxi of dad for and we have two horses.  Spare time is at a premium and it can be 9pm or later before I sit down at the pc some nights.

Anyway, when I say that the Sec+ should cost me 600, I should qualify that it's work paying for that so all it will cost me is a few beers and my evening meals.
Net+ Sec+ More to come
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1661

Joined: Mon Jan 29, 2007 2:59 pm

Post Mon Mar 28, 2011 3:00 pm

Re: Security + V ECH UK Question

Sounds like you're in much the same boat as most of us, in the IT world.  I have a wife (in RN school) and 4 kids, so add those to my full-time gig, and any part-time security stuff, or study I'm doing, and I understand, completely!  Balance of time, work and family is always a big task, but you kind of get used to it, and learn to satisfy all sides, as you move forward.  If you're not willing to work all of that out, and find some $$ to work with, to boot, security is definitely NOT a good field to get into, as things are ALWAYS changing, updating, etc, and continued research and study time are a necessity.
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
Next

Return to Career Central

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software