Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

security cryptology

Options
  • 26-02-2008 8:59pm
    #1
    razor842
    Closed Accounts Posts: 7


    Hi Guys
    working in IT for 4 years currently,

    looking for a change of job and the only thing that really interested me in college was information security and Cryptology, algoritms and ciphers and all that, as ive said, ive done the basic background for this stuff as part of my degree in computer science,

    i wondering does anybody here work in this area?
    can anyone recommend any good courses\certs for people who would
    want to specialise in this area?
    or even any advise on where to get started?

    thx


Comments

  • Options
    #2
    Tom Dunne
    Registered Users Posts: 23,212 ✭✭✭✭Tom Dunne


    The only one that springs to mind is this - MSc. in Security and Forensics at DCU. Details here : http://www.dcu.ie/prospective/deginfo.php?classname=MSSF&mode=full

    Not sure if it is exactly what you want, but it does have a cryptography module.


  • Options
    #3
    Ginger
    Registered Users Posts: 2,931 ✭✭✭Ginger


    Also computer security have a look at https://www.isc2.org/cgi-bin/index.cgi

    Especially SSCP and CISSP


  • Options
    #4
    _CreeD_
    Registered Users Posts: 4,147 ✭✭✭_CreeD_


    CompTIA's Security+ should be your first stop. It's vendor neutral and the knowledge can be applied to just about every other major cert. track out there. It will also give you enough background to start deciding which track you want to take, a designer/manager (CISSP and similar), Implementor (CCSP/CCIE Sec, MCSE Security, CCSA/CCSE etc.) or auditor (CEH, LPT and similar). You'd deal more directly with the nuts&bolts of Cryptography with the Cisco/Checkpoint vendor tracks (or those of any major backbone security vendor) than any of the others mentioned.


  • Options
    #5
    accensi0n
    Registered Users Posts: 2,779 ✭✭✭accensi0n


    The Security+ will give you some good foundation knowledge.

    I did the exam at the end of Jan. Make sure you know your crypto and PKI really well.

    If your interested in studying for the Security+ I have a couple of books to sell if you want to drop me a PM.


  • Options
    #6
    ntlbell
    Registered Users Posts: 16,288 ✭✭✭✭ntlbell


    with 4 years exp security + is pretty useless imo

    the CISSP or SSCP would suit you CISSP is more mangment based and the SSCP is more technical in Ireland I think the CISSP would be probably more sought after or "recognized"

    sec + is a waste of time.


  • Advertisement
  • Options
    #7
    _CreeD_
    Registered Users Posts: 4,147 ✭✭✭_CreeD_


    He said 4 years in IT (With some InfoSec theory from college), and wants to move into security. Not 4 years in security. Big difference :)


  • Options
    #8
    adonis
    Closed Accounts Posts: 1,107 ✭✭✭adonis


    how useful is cissp and do you you need to be working in security as a pre requisite to start?


  • Options
    #9
    accensi0n
    Registered Users Posts: 2,779 ✭✭✭accensi0n


    adonis wrote: »
    how useful is cissp and do you you need to be working in security as a pre requisite to start?

    5 years security related exp.

    https://www.isc2.org/cgi-bin/content.cgi?category=539


  • Options
    #10
    ntlbell
    Registered Users Posts: 16,288 ✭✭✭✭ntlbell


    _CreeD_ wrote: »
    He said 4 years in IT (With some InfoSec theory from college), and wants to move into security. Not 4 years in security. Big difference :)

    I understand what he said but there's no need to start off with security + there is nothing overly technical about the CISSP and anyone in IT 4 years must have a hit at least 4 or 5 of the main 10 domains needed


  • Options
    #11
    _CreeD_
    Registered Users Posts: 4,147 ✭✭✭_CreeD_


    Not necessarily and as of last October you need to be endorsed by an existing CISSP in good standing to gain the cert (if you just pass the exam you are just an Associate). I know the CISSP is not very technical and that was kind of my point, there is a decision to be made eventually as to whether someone wants to go more policy/design or implementation in InfoSec, CISSP is firmly in the former camp, the Security+ is neutral enough but has enough of both to give you more of a feel for what you may want to do in more detail later.
    Also, more importantly, he did state he wanted to go indepth with cryptography, the CISSP does not do this.

    The CISSP like the CCSP and similar are advanced certs, they are not in any way shape or form aimed at people who are just getting into InfoSec. Though it is possible to sit and pass the exams their worth without a lot of experience or related coursework (in the OS, Appliances etc.) is very limited. I work in the States and with SOX over here I've met quite a few CISSPs doing audits/policy creation etc., a few decent ones but many who simply jumped onboard thinking it was a good career move with all the other Infosec compliancies being forced on industry, no other realworld experience and they weren't worth the time it took to say hello.

    Security+ was my first Cert. and I've used the knowledge from it in the MCSE Security (the official Msoft courseware actually reference and recommend it), CCSP and believe it or not at least one question from the CCIE written I remembered only from Sec+ and not any of the recommended study material. It's the intro cert. that keeps on giving :)


  • Advertisement
Advertisement