.

Would I still be hired

<<

Joshsevo

User avatar

Sr. Member
Sr. Member

Posts: 281

Joined: Tue Dec 29, 2009 11:00 pm

Post Fri Mar 25, 2011 12:12 pm

Would I still be hired

So if I I don't have the GIAC cert that is equivalent to the CEH would I still get hired at company XXX?  Would they just see that I have my CEH and then ask me if I would be willing to take the gov version and then pay for it or would they just pass me over?
Security+, Network+, C|EH, CHFI, CPT
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Fri Mar 25, 2011 12:32 pm

Re: Would I still be hired

First, I think it would depend on the strength of your resume over all.
Last edited by rattis on Fri Mar 25, 2011 12:35 pm, edited 1 time in total.
OSWP, Sec+
<<

Joshsevo

User avatar

Sr. Member
Sr. Member

Posts: 281

Joined: Tue Dec 29, 2009 11:00 pm

Post Fri Mar 25, 2011 12:48 pm

Re: Would I still be hired

Sure of couse.  But lets make this a even playing field.  I have the CEH and a company that I applied for shows interest in me.  Would the final decsions be based on me not have the GIAC cert and having the CEH. 

I understand this is a tough question to answer as there are many variables that could affect the decision.
Security+, Network+, C|EH, CHFI, CPT
<<

tturner

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Thu Jun 26, 2008 4:50 pm

Post Fri Mar 25, 2011 1:02 pm

Re: Would I still be hired

That's very difficult to say. There are multiple entry level entries in this field including CEH, OSCP, GPEN and others. They are not all equivalent, and even in cases where they are very close some people have a bias towards a particular program. I know one colleague who refuses to hire anyone with CEH on their resume because he has such disdain for the program, and another who thinks GIAC certs are worthless because the test is open book and another who only cares about OSCP/E. If the prospective employer has listed a set of requirements they generally have a good reason for it, and no amount of argument will sway their opinion. But you are welcome to try and you may be successful. Just don't take it too hard if they stand firm on their requirements, it's just one company and probably not indicative of other future opportunities.

Chrisj also makes a good point in that the rest of your resume will factor heavily into their decision. If they are that determined you have GPEN to the exclusion of all else it may not be a place you want to work. That sounds like a fairly narrow-minded selection criteria. The best pentesters in the field that I can think of have either 0 or very few certs. That being said, I'm far from the best so I collect certs and training whenever I can :)
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, GSSP-JAVA, OPSE, CSWAE, CSTP, VCP

WIP: Vendor WAF stuff

http://sentinel24.com/blog @tonylturner http://bsidesorlando.org
<<

Joshsevo

User avatar

Sr. Member
Sr. Member

Posts: 281

Joined: Tue Dec 29, 2009 11:00 pm

Post Fri Mar 25, 2011 1:13 pm

Re: Would I still be hired

Great, this is the answer I was looking for.  Answered my question fully.
Security+, Network+, C|EH, CHFI, CPT
<<

venom77

User avatar

Hero Member
Hero Member

Posts: 1905

Joined: Mon Dec 11, 2006 3:23 pm

Post Fri Mar 25, 2011 1:14 pm

Re: Would I still be hired

Well what is the GIAC cert in question? You mention the "gov version" and "equivalent" to the CEH which would lead most to believe you're talking about the GPEN (or any of the pentesting certs from GIAC) but those are not on the government list (or are you talking about the CNDA cert)?

What it will most likely come down to is knowledge, skills, and experiences - not the specific certifications.
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Fri Mar 25, 2011 1:24 pm

Re: Would I still be hired

I interviewed for a position recently that wants a 4 year degree, and "SANS GIAC or CISSP".

I have none of those things. I am however, the last I heard, the top candidate for the position. It was my phone interview that made them interested in me for another position.

So as we said above, it's really hard to say what will get you in the door. Just be ready to sell hard and try to hit it out of the ball park when you get a chance.
OSWP, Sec+
<<

Joshsevo

User avatar

Sr. Member
Sr. Member

Posts: 281

Joined: Tue Dec 29, 2009 11:00 pm

Post Fri Mar 25, 2011 1:29 pm

Re: Would I still be hired

Yes after I posted this question I saw that posted it in the wrong section, sorry.

I was speaking about the CNDA. Sorry.

Experience is the tough part as I have to find a job that wants someone with zero experience.  I currently have an internship doing Computer Forensics but since my soon to be BA degree is in Comp Forensics & Network Security I am keeping all of my options open and keeping an open mind on which field I want to choose as career.  

Getting the CEH will at least put me ahead of some of the students I go to school with that are oblivious to the fact the experience is needed to get into the field.  Having the CEH will show I understand the basics of the field more than someone that has no experience and no certs.
Security+, Network+, C|EH, CHFI, CPT
<<

sil

User avatar

Hero Member
Hero Member

Posts: 551

Joined: Thu Mar 20, 2008 8:01 am

Location: ::1

Post Fri Mar 25, 2011 1:49 pm

Re: Would I still be hired

CNDA was EC-Council's nice way of saying "Certified Ethical Hacker" however, its pointless now that the C|EH is DoD 8750 (http://www.eccouncil.org/about_us/dod_8570.aspx) so nowadays, you're not going to be "shunned" for having a C|EH and applying for DoD jobs - clearance and "the ability to obtain clearance" mean all the world at the end of the day.

I'm always torn about certs. I like them, but the reality is, its nothing more than me challenging myself. I don't get them for jobs since I have many years experience. To be honest, never needed any of my certs. Anyhow, that being said, the reality is, in some industries, it is easier to get your foot in the door and depending on your position, a cert in that arena can be a mandate. For example, if you work at a Forensic Firm and you're called in to speak with say a DA or an attorney, do you really think they'll give you the job based on nothing more than experience? Or do you think it would make more sense to present a "certified forensic expert?"

I say, do the certs to challenge yourself and learn. At the end of the day, things trickle into place. Forget about what others think (seriously). Do it for the challenge in an effort to be the best you can be. When you've learned to get comfortable with this concept, I guarantee you things come easier as opposed to: "I wonder what will..." NO... Don't wonder, do things for you and you won't waste time wondering, things level out at the end.

Return to GPEN - GIAC Certified Penetration Tester

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software