Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

CISA / CISM / CISSP - Which certification for moving to ICT Security field?

  • 03-06-2019 11:05am
    #1
    Registered Users, Registered Users 2 Posts: 810 ✭✭✭


    I have 8 years experience in IT Support + Manual Software testing. Currently preparing for Prince 2 certification. I wish to move to IT management side of things and is interested in ICT Security.

    May I know which one of the following I should go:

    CISA / CISM / CISSP

    Is CISM difficult to attain?


Comments

  • Moderators, Education Moderators Posts: 2,610 Mod ✭✭✭✭horgan_p


    CISSP will need you to show 5 years experience covering at least 2 of the 8 domains.
    So by design it isnt suitable as an intro to IT security.

    I have seen colleagues studying for CISM but I couldnt say how good or bad it is.


  • Registered Users, Registered Users 2 Posts: 810 ✭✭✭TestLink


    Any idea how difficult is the CISM exam? Would self study be enough?


  • Moderators, Education Moderators Posts: 2,610 Mod ✭✭✭✭horgan_p


    Most IT exams can be done using self study , video training and practice exams.
    How long it takes is entirely up to you


  • Registered Users, Registered Users 2 Posts: 810 ✭✭✭TestLink


    I have IT experience in the following domains:
    Telecom
    Healthcare
    Public Sector
    Non Profit

    Can you suggest an entry level / mid level certification?

    Prefer something that would go along with project management.

    Thanks...


  • Moderators, Education Moderators Posts: 2,610 Mod ✭✭✭✭horgan_p


    I think you misunderstand, the domains for CISSP are :
    • Security and Risk Management.
    • Asset Security.
    • Security Architecture and Engineering (includes cryptography)
    • Communications and Network Security.
    • Identity and Access Management.
    • Security Assessment and Testing.
    • Security Operations.
    • Software Development Security.


  • Advertisement
  • Registered Users, Registered Users 2 Posts: 810 ✭✭✭TestLink


    So is there any thing I could do?


  • Moderators, Education Moderators Posts: 2,610 Mod ✭✭✭✭horgan_p


    so in your 8 years experience can you show that you have experience in any of the domains that I listed above ?

    If you want to get into IT security, I'd suggest doing the security+ exam.


    Alternatively - look at job postings for jobs you want. Look at the requirements, there will always be some in common and start there ?


  • Registered Users, Registered Users 2 Posts: 810 ✭✭✭TestLink


    horgan_p wrote: »
    so in your 8 years experience can you show that you have experience in any of the domains that I listed above ?

    If you want to get into IT security, I'd suggest doing the security+ exam.


    Alternatively - look at job postings for jobs you want. Look at the requirements, there will always be some in common and start there ?

    Thanks...


  • Registered Users, Registered Users 2 Posts: 810 ✭✭✭TestLink


    TestLink wrote: »
    Thanks...

    I only have intermediate level networking knowledge.

    Would I be able to do SSCP? Or should I go for Comptia Security+?

    Any other certification I could do that deals exclusively with IT Auditing?

    I am not in to pen test and all. So looking for IT audit course + certification.

    Thanks...


Advertisement