F_A_H_D
asked on
how to start my Security career ?
i know repeated question .. but i need your help guys
im working as network / system administrator in IT Dept .. and i have arround 7 years experience in that field and Bachelor degree not in IT field, in some engineering
also im certified MCITP EA 2k8 server - CCNA - IBM AIX os Admin
and i realized that i need to take the security direction to increase my CV value and gain more knowledge & experience
what certification i should start with ? this is the question
should directly take CISSP ?? or should i start with CEH ... or ...etc
so guys help me
im working as network / system administrator in IT Dept .. and i have arround 7 years experience in that field and Bachelor degree not in IT field, in some engineering
also im certified MCITP EA 2k8 server - CCNA - IBM AIX os Admin
and i realized that i need to take the security direction to increase my CV value and gain more knowledge & experience
what certification i should start with ? this is the question
should directly take CISSP ?? or should i start with CEH ... or ...etc
so guys help me
#Cisco CCSP SECURITY http://www.cisco.com/web/learning/le3/le2/le37/le54/learning_certification_type_home.html
#Cisco CCIE Security http://www.cisco.com/web/learning/le3/ccie/security/index.html
#Ethical hacking CEH https://www.eccouncil.org/certification/certified_ethical_hacker.aspx
#Ethical hacking CHFI http://www.eccouncil.org/certification/computer_hacking_forensic_investigator.aspx
#Offensive Security Certified Professional OSCP http://www.offensive-security.com/
#Cisco CCIE Security http://www.cisco.com/web/learning/le3/ccie/security/index.html
#Ethical hacking CEH https://www.eccouncil.org/certification/certified_ethical_hacker.aspx
#Ethical hacking CHFI http://www.eccouncil.org/certification/computer_hacking_forensic_investigator.aspx
#Offensive Security Certified Professional OSCP http://www.offensive-security.com/
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
keep yourself updated about : Information Security, Process Security, Internet Technology Security, Communications Security, Wireless Security, Physical Security ..etc. Learn Linux/Unix and Networking and DB.
Look @
http://packetstormsecurity.org/
http://hakin9.org/
http://www.linuxjournal.com/
http://www.linux-magazine.com/
http://www.linux-magazine.com/Issues/2010/121
Use opensource tools ), maybe you could use BackTrack, a nice distro with a lot of security tools to ethical hacking....
http://www.backtrack-linux.org/
http://en.wikipedia.org/wiki/BackTrack
http://www.linux-magazine.com/w3/issue/77/BackTrack.pdf
Look @
http://packetstormsecurity.org/
http://hakin9.org/
http://www.linuxjournal.com/
http://www.linux-magazine.com/
http://www.linux-magazine.com/Issues/2010/121
Use opensource tools ), maybe you could use BackTrack, a nice distro with a lot of security tools to ethical hacking....
http://www.backtrack-linux.org/
http://en.wikipedia.org/wiki/BackTrack
http://www.linux-magazine.com/w3/issue/77/BackTrack.pdf
If I had to pick one it would be the CISSP.
What I'd actually recommend is following the DoD Approved 8570 Baseline Certifications track to achieve IAT Level I, II, and III.
IAT Level I: A+, Network+, SSCP
IAT Level II: GSEC, Security+, SSCP
IAT Level III: CISA, CISSP, CASP, GCIH, GCED
In addition to the CEH, I'd consider other SANS training/GIAC certifications of interest (e.g. GPEN, etc.)
While this question is dated, my advice is not and I provide this information for future search results.
Additionally, WGU offers excellent (and inexpensive) online BS and MS degrees programs. The latter being based on the CISSP domains and CEH. They will gladly waive credits based on current certifications and other relevant course work completed in the past.
What I'd actually recommend is following the DoD Approved 8570 Baseline Certifications track to achieve IAT Level I, II, and III.
IAT Level I: A+, Network+, SSCP
IAT Level II: GSEC, Security+, SSCP
IAT Level III: CISA, CISSP, CASP, GCIH, GCED
In addition to the CEH, I'd consider other SANS training/GIAC certifications of interest (e.g. GPEN, etc.)
While this question is dated, my advice is not and I provide this information for future search results.
Additionally, WGU offers excellent (and inexpensive) online BS and MS degrees programs. The latter being based on the CISSP domains and CEH. They will gladly waive credits based on current certifications and other relevant course work completed in the past.
CISSP is the most recognized. That is where I would start.
Also this organization is very good for the IT security professional to get involved with. You won't find a lot of technical resources here but you should be able to really do some networking within this organization: http://www.infragard.net