Cissp

[Vorlin]

Certifications are only worth something when it's related to your field, you continuously work on keeping the experience in said field up, and the certification program is updated to match technology and it's not something that can be cram-learned in 2 weeks, giving the whole program the whole 'paper MCSE' look. Go for it if you plan on using it extensively but if not, skip it. I can't stand people who take a bunch of shite and don't use it, but because they have it (or at least got it once) they think they're more knowledgeable than they really are.

Prime example: how many professionals at work do you see sign with glorious signatures? My work signature is the same as on here...about video games (Global Operations is out today!) whereas here's a signature of someone who sits in the same row:

K**** C*****
MCSE + I, MCDBA
Pre-Production
Team Lead for Unicenter Implementation

What that signature tells me is that she's not really that knowledgeable in anything she stated. And it's VERY easy to pick her apart as far as stuff is concerned.

[hogfly]

bwahahaha vorlin!
you and your anti-MCSE self.

as for certs and their worth.....its just a piece of paper and how well you can take a test.
As mrwall said...its not anything you can't learn on the web or in a pc mag. The only worth they have in my opinion is for getting your foot in the door at a company. Then you better be prepared to back it up with some hardcore knowledge. if it relates to your job or one that you want to go for.. then go for it....it can't hurt anything...I know some places won't even look at your resume unless you look good on paper. If its just so you can have a fancy title or say to your friends that you are CISSP...then its not worth it.
just my 2 pennies

[bowlfreak]

I'll kick in my 2 cents' worth here...

The "buzzword" for the IT industry for 2002 is "security." The CISSP is worthwhile if you are going to be responsible for/managing incident response, detection, system hardening, etc. If you wish to take the more technical route, then the other ISC cert may be worthwhile. MCSA? Trying to secure an OS that is by it's nature insecure? Good luck. TruSecure Corp just released a couple of them. Look into Cisco or Checkpoint if you want to take an active hands-on role in enterprise security.

The problem is this - While you may have the knowledge, experience, and initials after your signature...the HR Manager may have no clue what a CISSP, CCSA, or MCSA stands for or what it shows.

A case in point...a buddy of mine passed his CISSP about 9 months ago, but had no experience in building or installing hardware components. When it came time to secure the servers against future attacks - he had no experience to draw from. He was "downsized" about 2 months ago due to poor performance and budget cutbacks.

Having a paper certificate that identifies you as a "certified security professional" is a good thing - but what's better is being able to prove it when the stuff hits the fan.

bowlfreak
NT MCSE, Inet+, Net+

[AngryBob]

what about GIAC?

[configterminal]

Certifications serve their purpose. With all the downsizing today it is invaluable. It shows a certain dedication to your field. I've had 4 managers in the last 4 months and 3 different job titles without changing jobs. New managers are often given a head count that they must meet. They are told, "ok you have 30 people under you now, pick 20 and get rid of 10." Without ever working with you or even knowing what you have done, are capable of, or how hard you work they are to decide who is going to make the team. It cannot hurt to have letters behind your name, regardless of what you know, in these increasingly common situations. We all know most IT managers couldn't tie thier own shoes without help or at least approval from higher up. You say you have the oppurtunity, I say, take it as long as it is on someone else's dime.