I am interested in delving into network/ systems security. Not only does it interest me, but it has become a function of my job. I was wondering if anyone could give some advice on what direction to head. Is CISSP the way to progress or something else? Also has anyone attended any SANS events, were they worth the time and money? In particular, SANS Security Essentials Bootcamp Style Course. Thank you for any guidance.