Information security certifications. Love or Hate?

Information security certifications. Love or Hate?

Henry Dalziel | Certified Ethical Hacker | June 12, 2013

We’ve been asked a million times and will be asked again another million times: “Should I bother getting an information security certification, will it help me get a job etc etc.”

The obvious answer is: depends who you ask.

We thought to ask you first however! Let us know your thoughts:

Voting is now closed! However – here is a screenshot of the results as at November 25th 2014

Are security certifications worth it?
CISSP tends to get a lot of flak these days, possibly because of its’ perceived ‘must-have’ by HR recruitment consultants who might not know very much about the intricacies of being a penetration tester or security expert. CISSP, often quoted as being the ‘gold standard’ of certification and her merry siblings SSCP: Systems Security Certified Practitioner, CAP: Certified Authorization Professional, CSSLP: Certified Secure Software Lifecycle Professional and CCFP: Certified Cyber Forensics Professional are all industry-specific qualifications, but must you have one?

There are millions of schools offering (amongst other certs) CISSP bootcamps (and yes we are one) and they all claim that their pass-rates are in the 90% range but doesn’t that instantly raise an eye-brow? If everyone is passing, then, doesn’t that diminish the value of the certification?

CEH, now in version 8 (CEHv8), Security+ and Mile2’s CPTE are all first-class courses and training packages but we’d really love to know how, and to what extent, they helped you? The demand for experienced information security experts (some call them ethical hackers), penetration testers etc is clearly huge. Yes, there are plenty of people willing to get into the industry but how many of these professionals are truly talented – and – have the experience? Do they have certifications? Possibly not!

We are an authorized training center and we are a infosec school so clearly we believe in the value of education, but we’d still love to get your feedback into the ‘real value’ of attaining a certification, i.e. what did it really bring to your career?

I’m sure you have heard this quote but it is relevant to this post: Henry Ford –

Anyone who stops learning is old, whether at twenty or eighty. Anyone who keeps learning stays young. The greatest thing in life is to keep your mind young.

If we take that at face value then of course ANY education and training is good, especially if it is up to date, engaging and useful to a person’s career.

Also, it’s worth adding here that if you are interested in taking a security cert – get in touch with us. If you’re on the fence, why not see how good you are by taking our Concise Courses 5 minute CEH, CISSP, Security+ and/ or CPTE practice test! You don’t have to register – just hit the link and see how good you are! Let us know how you did and what you think of the questions.

So what do you think? How did your security certification help you, would you recommend others to study a cert or is it just an annoying thing that you have to do?

  • dp

    It ll we good to go with a certification. Try to find the correct one. If you are passionate about this field, go for OSCP/OSCE. Mark my words, it is damn good.

Leave a comment or reply below...thanks!