View previous topic :: View next topic |
Author |
Message |
danielrm26 Just Arrived
Joined: 06 Nov 2002 Posts: 1
|
Posted: Fri Aug 01, 2003 4:06 am Post subject: The Security+ Exam/Certification |
|
|
I just wanted to take this opportunity to start a thread just for Security+. There were a few such threads a while back but they were deleted during a minor server disaster.
Anyway, I passed the Security+ exam a while back and my basic impression of the test was that it was respectable. This isn't to say that it was especially hard or anything, it's just that it wasn't a bad test. The material covered was actually Security related and was of a decent difficulty level. Many tests, as we all know, are easy to pass by just memorizing things for a couple days, and I don't think this test is one of those.
The cryptography was especially good; the studying for that section required that I freshen up on a lot of the algorithms and stuff that I was rusty on. Asking about how SSL works seems to be a favorite for the test givers as I have seen this both in multiple study guides and on the test itself.
All in all, the test seems to be trying to be a *very* mini CISSP. It covers multiple domains (mirroring those on the CISSP to a decent degree) in a very light way and essentially says that anyone who passes it has at least *some* grasp of Information Security.
As far as difficulty is concerned, if you understand most of the more advanced content discussed on this site then you shouldn't need more than a day or so to study for the test. I used one study guide and went over it for a couple hours the night before and then on the ride to the testing center and received an 840 out of 900 (over 90%). For those new to Security, you will probably have to study quite a bit to be ready for it - it's just a matter of how much you know before you start studying.
Another thing to note is the fact that I just got a new job in Information Security with a major corporation, and in talking with my new peers I have found out that in this environment there are very few certifications that are respected. Security+ isn't one of them. I have my MCSE, Security+, Linux+, Network+, and A+, and none of them are even considered significant. The only certs they respect in a serious Infosec environment are along the lines of CISSP (ISC2), GSEC, GCUX (SANS), Cisco Certified Security Specialist, Checkpoint, etc. This, however, shouldn't dissuade anyone from getting the more modest certs; many smaller companies see these low to mid level certs as very positive.
Anyway, chime in with any thoughts or comments on the test or the cert.
|
|
Back to top |
|
|
b4rtm4n Trusted SF Member
Joined: 26 May 2002 Posts: 16777206 Location: Bi Mon Sci Fi Con
|
Posted: Fri Aug 01, 2003 10:42 am Post subject: |
|
|
I thought it was a pretty straight forward cert. and should be treated as a primer for anyone wanting to venture into the security field.
Much in the way A+ and Network+ are primers for those areas.
I agree with you that anyone who understands about 90% of this sites content should be able to pass with minimal extra study.
|
|
Back to top |
|
|
flw Forum Fanatic
Joined: 27 May 2002 Posts: 16777215 Location: U.S.A.
|
Posted: Fri Aug 01, 2003 1:51 pm Post subject: |
|
|
One of the goals during the beta reviews was to make this a entry level security test for technicians not mgr's. It was never intented to compete with CISSP and the like. Just a entry level cert for a entry level security tech.
I was a 3rd party vendor for its evolution from beta to initial final version. I do remember one of the most difficult topics when working as a group was the securtity policy/procedures as well as not including anything that would be country. HIPPA, Joint Commission, ISO/united Nations etc... yes even ISO standards were highly discouraged because someone in India or Peru may not be bound by those standards at all or not enforced. So it was geared towards "best practices" which in many quesitons was the same as other U.S. reqirements. Privacy was a b*tch, since most companies reserver the right to snoop, so how does a person help ensure privacy? So some of the questions are less than desirable but had to be covered to comply with the CompTIA goals.
|
|
Back to top |
|
|
PhiBer SF Mod
Joined: 11 Mar 2003 Posts: 20 Location: Your MBR
|
Posted: Tue Sep 16, 2003 2:17 am Post subject: |
|
|
So im pretty much set on studying and getting my Security+. I am hoping to purchase my study material pretty soon. Anyone else plan on studying/taking the Security+ anytime soon!? Also, could anyone recommend good study books!? "SECURITY PLUS EXAM CRAM 2" seems pretty good. Any and all recommendations would be helpful!
|
|
Back to top |
|
|
squidly Trusted SF Member
Joined: 07 Oct 2002 Posts: 16777215 Location: Umm.. I dont know.. somewhere
|
Posted: Tue Sep 16, 2003 2:49 am Post subject: |
|
|
PhiBerOptiCx wrote: |
So im pretty much set on studying and getting my Security+. I am hoping to purchase my study material pretty soon. Anyone else plan on studying/taking the Security+ anytime soon!? Also, could anyone recommend good study books!? "SECURITY PLUS EXAM CRAM 2" seems pretty good. Any and all recommendations would be helpful! |
Check out the DVD traning system ST did a review of. I have that one and I liked it. Im gonna take my Security+ during my xmas break.
|
|
Back to top |
|
|
PhiBer SF Mod
Joined: 11 Mar 2003 Posts: 20 Location: Your MBR
|
Posted: Tue Sep 16, 2003 3:10 am Post subject: |
|
|
Cool.
How much review/study have you done thus far?
|
|
Back to top |
|
|
Securit Just Arrived
Joined: 01 Dec 2002 Posts: 0
|
Posted: Tue Sep 16, 2003 3:29 am Post subject: |
|
|
Im also interested in taking this, however not sure about who can take it or when? Do you have to have either some kind of MCSE or MCSA first before you are eligible?
|
|
Back to top |
|
|
squidly Trusted SF Member
Joined: 07 Oct 2002 Posts: 16777215 Location: Umm.. I dont know.. somewhere
|
Posted: Tue Sep 16, 2003 4:41 am Post subject: |
|
|
PhiBerOptiCx wrote: |
How much review/study have you done thus far? |
I've done about 3 weeks worth of study right now. Most of the the stuff I already know. If you have a good basics of security then you should be fine. It is OS independent.
Securit wrote: |
not sure about who can take it or when?
|
If you have a brain and a $225 you can take it
Last edited by squidly on Tue Sep 16, 2003 5:08 am; edited 1 time in total |
|
Back to top |
|
|
PhiBer SF Mod
Joined: 11 Mar 2003 Posts: 20 Location: Your MBR
|
Posted: Tue Sep 16, 2003 5:02 am Post subject: |
|
|
Quote: |
If you have a brain and a $225 you can take it |
Have you thought about signing up for the Comptia IT Pro membership!? Its like $59/year and you get some pretty good discounts on exams. I belive the Security + exam would cost $175 instead of $225. Thats almost $50 less. So for about $9 more, you get a year membership and a whole bunch of other goodies. I think im gunna join!
Check it out:
https://www.comptia.org/joinnow/itpro_app/why_join.asp
|
|
Back to top |
|
|
Bart Decker Just Arrived
Joined: 21 Apr 2003 Posts: 7
|
Posted: Tue Sep 16, 2003 2:19 pm Post subject: |
|
|
Can you order the study material when you're living outside the US ? Or is it an international exam ?
Most exam are too expensive for me to pay , i work for myself as a simple network implementor , no complex things . So i need every $ each month to keep things running . I'm looking for a exam that allows me to learn at home , without getting lessons are anything . Just learn by yourself and make the exam when you think you're ready .
PhiBerOptiCx wrote: |
So im pretty much set on studying and getting my Security+. I am hoping to purchase my study material pretty soon. Anyone else plan on studying/taking the Security+ anytime soon!? Also, could anyone recommend good study books!? "SECURITY PLUS EXAM CRAM 2" seems pretty good. Any and all recommendations would be helpful! |
|
|
Back to top |
|
|
squidly Trusted SF Member
Joined: 07 Oct 2002 Posts: 16777215 Location: Umm.. I dont know.. somewhere
|
Posted: Tue Sep 16, 2003 8:18 pm Post subject: |
|
|
Bart Decker wrote: |
Can you order the study material when you're living outside the US ? Or is it an international exam ?
Most exam are too expensive for me to pay , i work for myself as a simple network implementor , no complex things . So i need every $ each month to keep things running . I'm looking for a exam that allows me to learn at home , without getting lessons are anything . Just learn by yourself and make the exam when you think you're ready .
|
The CompTIA exams are designed to be international. The study material is avaliable where ever you are!
And dont forget google is you best friend..most of the information you need can be found on line.
|
|
Back to top |
|
|
chris Forum Fanatic
Joined: 18 Apr 2002 Posts: 16777201 Location: ~/security-forums
|
Posted: Tue Sep 16, 2003 8:27 pm Post subject: |
|
|
PhiBerOptiCx wrote: |
Quote: |
If you have a brain and a $225 you can take it |
Have you thought about signing up for the Comptia IT Pro membership!? Its like $59/year and you get some pretty good discounts on exams. I belive the Security + exam would cost $175 instead of $225. Thats almost $50 less. So for about $9 more, you get a year membership and a whole bunch of other goodies. I think im gunna join!
Check it out:
https://www.comptia.org/joinnow/itpro_app/why_join.asp |
But also
You must possess at least 1 CompTIA certification in order to be eligible for membership.
You need sec+ or another cert to join to get the discounts
|
|
Back to top |
|
|
squidly Trusted SF Member
Joined: 07 Oct 2002 Posts: 16777215 Location: Umm.. I dont know.. somewhere
|
Posted: Tue Sep 16, 2003 9:37 pm Post subject: |
|
|
Actuially Ive looked at that.. After Sec+ I am not planning on getting any other CompTIA certs. I will be going for GIAC certs. IMHO the GIAC certs are much better and must more respected.
|
|
Back to top |
|
|
ShaolinTiger Forum Fanatic
Joined: 18 Apr 2002 Posts: 16777215 Location: Kuala Lumpur, Malaysia
|
Posted: Tue Sep 16, 2003 9:38 pm Post subject: |
|
|
squidly wrote: |
Actuially Ive looked at that.. After Sec+ I am not planning on getting any other CompTIA certs. I will be going for GIA/SANS certs. IMHO the GIA certs are much better and must more respected. |
Same here pretty much, I want to get Linux+ aswell because it looks pretty interesting
After Sec+ I want some SANS stuff, CISSP maybe and perhaps go after some more pen-testing specific certs.
|
|
Back to top |
|
|
PhiBer SF Mod
Joined: 11 Mar 2003 Posts: 20 Location: Your MBR
|
Posted: Tue Sep 16, 2003 10:41 pm Post subject: |
|
|
Quote: |
You must possess at least 1 CompTIA certification in order to be eligible for membership |
Wow, i must have missed that on the comptia page. Well, i am going to start studying for the Security+ test hopefully this week. Good luck to everyone who is going to try and get their certification!
Shaloin, out of curiosity, do you have certs right now!?
|
|
Back to top |
|
|
Bart Decker Just Arrived
Joined: 21 Apr 2003 Posts: 7
|
Posted: Thu Sep 25, 2003 11:10 am Post subject: |
|
|
I found my place to do the Comptia+ Security Exam . But how well is it respected (srry if this is bad English ) ? (In Netherlands/Belgium e.a) .
I did some exams before this one . NT4.0 workstation/Server exams , but i was a bit naive when i was 18 so the paper was worthless . Spent about 4500 euros on those sjitty courses ....
So i want to be sure know , before jumping into something .
|
|
Back to top |
|
|
|