Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

CISA / CISM / CISSP - Which certification for moving to ICT Security field?

  • 03-06-2019 12:05pm
    #1
    TestLink
    Registered Users Posts: 762 ✭✭✭


    I have 8 years experience in IT Support + Manual Software testing. Currently preparing for Prince 2 certification. I wish to move to IT management side of things and is interested in ICT Security.

    May I know which one of the following I should go:

    CISA / CISM / CISSP

    Is CISM difficult to attain?
    Tagged:


Comments

  • #2
    horgan_p
    Moderators, Education Moderators Posts: 2,603 Mod ✭✭✭✭horgan_p


    CISSP will need you to show 5 years experience covering at least 2 of the 8 domains.
    So by design it isnt suitable as an intro to IT security.

    I have seen colleagues studying for CISM but I couldnt say how good or bad it is.


  • #3
    TestLink
    Registered Users Posts: 762 ✭✭✭TestLink


    Any idea how difficult is the CISM exam? Would self study be enough?


  • #4
    horgan_p
    Moderators, Education Moderators Posts: 2,603 Mod ✭✭✭✭horgan_p


    Most IT exams can be done using self study , video training and practice exams.
    How long it takes is entirely up to you


  • #5
    TestLink
    Registered Users Posts: 762 ✭✭✭TestLink


    I have IT experience in the following domains:
    Telecom
    Healthcare
    Public Sector
    Non Profit

    Can you suggest an entry level / mid level certification?

    Prefer something that would go along with project management.

    Thanks...


  • #6
    horgan_p
    Moderators, Education Moderators Posts: 2,603 Mod ✭✭✭✭horgan_p


    I think you misunderstand, the domains for CISSP are :
    • Security and Risk Management.
    • Asset Security.
    • Security Architecture and Engineering (includes cryptography)
    • Communications and Network Security.
    • Identity and Access Management.
    • Security Assessment and Testing.
    • Security Operations.
    • Software Development Security.


  • Advertisement
  • #7
    TestLink
    Registered Users Posts: 762 ✭✭✭TestLink


    So is there any thing I could do?


  • #8
    horgan_p
    Moderators, Education Moderators Posts: 2,603 Mod ✭✭✭✭horgan_p


    so in your 8 years experience can you show that you have experience in any of the domains that I listed above ?

    If you want to get into IT security, I'd suggest doing the security+ exam.


    Alternatively - look at job postings for jobs you want. Look at the requirements, there will always be some in common and start there ?


  • #9
    TestLink
    Registered Users Posts: 762 ✭✭✭TestLink


    horgan_p wrote: »
    so in your 8 years experience can you show that you have experience in any of the domains that I listed above ?

    If you want to get into IT security, I'd suggest doing the security+ exam.


    Alternatively - look at job postings for jobs you want. Look at the requirements, there will always be some in common and start there ?

    Thanks...


  • #10
    TestLink
    Registered Users Posts: 762 ✭✭✭TestLink


    TestLink wrote: »
    Thanks...

    I only have intermediate level networking knowledge.

    Would I be able to do SSCP? Or should I go for Comptia Security+?

    Any other certification I could do that deals exclusively with IT Auditing?

    I am not in to pen test and all. So looking for IT audit course + certification.

    Thanks...


Advertisement