Working in IS Security - basic information please?

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
I have never been an IS security specialist. However, I have a lot of
experience in systems and networks, including experience as a systems
administrator with a top-secret clearance working in a security
protected area.

One thing I like about security is that it's one of the few
specializations that can't be exported overseas. Often security
positions can not be filled by H1Bs either. Still, if too many
displaced techies are trying to move into security, the field may be
over-crowded just the same.

1) Is it worth doing? There are not many security jobs advertised, and
I think a lot of people are trying to move into security. Same
supply/demand problem as the  rest of IT?

2) Are certification a must? Are they worth it? I have a lot to learn
about IS security, but I honestly believe I can teach myself more
relevant matterial, and do so much better and faster, than any cert
program. I plan to get the security+ at least. I have the experience
to sit for the cissp, but I really don't like the cissp for a lot of
reasons. I don't like SANS all that much either.

3) Are there any areas in IS security that are especially hot? Or that
will be especially hot?

Any iformation appreciated. Thanks in advance.

Re: Working in IS Security - basic information please?

Quoted text here. Click to load it
I transitioned from software development to security. Employers weren't
really interested in Security+ (which I got last year), but they *are*
interested in the CISSP I obtained recently. Look at the job postings for
the type of work you want to help you decide what certs are "worth" getting.

Quoted text here. Click to load it
Ethical hacking.

Bit Tamer

Site Timeline