Questioning Security Certifications - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

What is the most important Linux security technology?

	SELinux
	grsecurity
	CIS Benchmark
	Bastille Linux
	iptables
	LIDS

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

All About Linux

DanWalsh LiveJournal

Securitydistro

Latest Newsletters

Linux Security Week: February 6th, 2012

Linux Advisory Watch: February 3rd, 2012

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Questioning Security Certifications

User Rating:

How can I rate this item?

Source: FCW Insider - Posted by Ryan W. Maple

A pretty good read: So we can't help but wonder: What is the point of certification? How can federal agencies ensure that their cybersecurity staffers, and their contractors' staff, have the right skill sets? What do you think?

Read this full article at FCW Insider

Comments

SEC ENG

Written by CBRP1R8 on 2009-04-09 10:24:24

More crapola spewing forth from a government that can't see the forest for the trees. CERTS is just a piece of paper nothing more, not worth much more then TP. I've got 20yrs experience in the IT field, across mutliple genres from military communications, the beginning of networks, vpns to OS's to applications and have held certs dating back to ADA and Novell, do I keep them current...NO, Nobody uses that old crap anymore.

Besides, All the band-wagoners just jump on the newest latest craze in certs available. Then their are people like myself who are actually qualified to do the work that sit idly by in their current job and alot let their certs slip over time due to the increasing costs to keep up with all of them. The commenters on that site make claims that other professionals, doctors and lawyers keep up with it, far as I know they only have to pass their finals like the bar and anything else is just professional fluff, the only REQUIRED one is the BAR.

In our case, to get hired they're looking for all the certs, from those useless MS to the latest cisa,cism, cissp etc, which could end up costing us hundreds yearly, not even counting the experience or fees that they tac on to keep them updated. And for what, most of the nubs just out of school or freshly certed have no experience whatsoever and having not worked in the industry have no clue about what real security is, if they even can remember what they learned in that book/took the test for. The whole problem i think was touched on, the hiring/interview process, had people with experience been in the process somewhere there wouldn't be such probs w/ all these psudo-certed people running around causing us all problems as it is. It's seems to be a HR/Mgmt issue in my eyes.

Certs

Written by JD on 2009-04-18 12:27:19

Well if we take your view, then why bother with accountants getting their CPA cert? Especially if they have 20 yrs exp, who needs a CPA cert? Why have a MD get board certified, afterall it is just paper right?

This discussion has been around for many years and it is so ignorant and pointless. Any cert is just a measure of someone's demonstrated abilities on a exam. However studying for that exam, the correct way and not using a brain dump like some losers do, will positively instill a skill set to the person studying. People with certs and experience is all I will hire.

Only registered users can write comments.
Please login or register.