The Infosec Trinity

Well, I just passed the final exam for the GIAC GSEC credential from SANS, and I have to say it’s a pretty good feeling. It’s still less respected in most circles than the CISSP, but that’s because less people know about it. I think that’s likely to start changing very soon, though.

If I were to go for another SANS cert, I think it’d be the GSFW, but right now finishing my bachelors is the top priority. With my two most-desired certs taken care of, I can now focus completely on that task. Ultimately, I think employability comes down to a special combination of the following:

1. Experience

2. Degree

3. Certifications

It seems that 2 and 3 have been switching places as of late due to a number of factors. Perhaps the biggest one is the lack of quality control in today’s universities. To put it bluntly, an employer cannot any longer be sure that someone with a bachelors in computers is going to be valuable to his/her organization.

There are great IT people out there with degrees, and great ones without them. It’s hit or miss really. I still think there’s a higher chance that the person will be decent at something if they have the degree, but it’s not the kind of indicator it used to be.

As for me, I choose to have all three — experience, certs, and the degree. Can’t go wrong there.

Related posts:

1. My Journey to Beginner Audiophile

2. Online Education May Be Poised to Replace Dying Universities

3. Degrees and Credentials in InfoSec

4. The Cybersecurity Hiring Gap is Due to The Lack of Entry-level Positions

5. The Relationship Between Hardship, Struggle, and Meaning