We all remember the early days of intrusion-detection systems — IDS was supposed to be the silver bullet that ensured the security of our enterprises against every conceivable attack. It was the same premise that the firewall industry and the giant antivirus conglomerates were built around: Buy our product and your worries are over.
Expand all |
Post comment
Enterprise Intrusion Analysis, Part One
2009-04-22
DW (2 replies)
DW (2 replies)
Enterprise Intrusion Analysis, Part One
2009-06-28
Anonymous (1 replies)
Anonymous (1 replies)
Is there any provision in opinion for a blend of certification and work experience? Don't forget that you need at least 5 yrs industry experience to sit the exam for the CISSP...
Qualifications have their place, in terms of either a starting point or ratification of a wide skill-set. Working for the same enterprise for 10yrs using the same systems day-in-day-out does not negate the need for the general or well-rounded structure of a course such as the CISSP...
I think people learn in different ways and certifications, being of a more traditional academic style, don't suit everyone. BUT they do imply knowledge of a large breadth of knowledge, applied or otherwise. Conversely, some are outdated and don't mean an individual is automatically any better. Ask any HR person... they look for a good mix of skills and experiences... certs show knowledge that a 1hr interview cannot... believe it or dont!
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/infocus/1904/1337#1337