Comments on: I Am A CISSP http://www.nothingnoteworthy.com/2008/07/27/i-am-a-cissp/ Much ado about Nothing Sun, 25 Apr 2010 16:31:22 -0600 http://wordpress.org/?v=2.8.1 hourly 1 By: patti http://www.nothingnoteworthy.com/2008/07/27/i-am-a-cissp/comment-page-1/#comment-172 patti Tue, 29 Jul 2008 13:04:37 +0000 http://www.nothingnoteworthy.com/?p=221#comment-172 The relevant standard is: DoD 8570.01-M "Information Assurance Workforce Improvement Program". It's purpose is to "Establish baseline technical and management IA skills among personnel performing IA functions across the DoD enterprise". The short of it is that in order to work on DoD projects in an IA capacity beyond December 31st, 2008, you have to hold certain certifications. The "chart" is on Page 92 of the Standard PDF: http://www.js.mil/whs/directives/corres/pdf/857001m.pdf . A Security+ gets you on the chart; that's a good thing. An Associate (if you don't have the years for the CISSP) gets you to higher levels within the chart; that's a better thing. But four years and a Security+ should be enough experience for your CISSP, if you pass the exam. Take a look at the requirements on the ISC2 website. The relevant standard is: DoD 8570.01-M “Information Assurance Workforce Improvement Program”. It’s purpose is to “Establish baseline technical and management IA skills among personnel performing IA functions across the DoD enterprise”.

The short of it is that in order to work on DoD projects in an IA capacity beyond December 31st, 2008, you have to hold certain certifications. The “chart” is on Page 92 of the Standard PDF: http://www.js.mil/whs/directives/corres/pdf/857001m.pdf .

A Security+ gets you on the chart; that’s a good thing. An Associate (if you don’t have the years for the CISSP) gets you to higher levels within the chart; that’s a better thing. But four years and a Security+ should be enough experience for your CISSP, if you pass the exam. Take a look at the requirements on the ISC2 website.

]]> By: curiousg http://www.nothingnoteworthy.com/2008/07/27/i-am-a-cissp/comment-page-1/#comment-171 curiousg Tue, 29 Jul 2008 12:51:29 +0000 http://www.nothingnoteworthy.com/?p=221#comment-171 I have a 4 year, unfortunately in history. I don't know if that will count. What are the DOD requirements chart taking effect in Jan 1 2009? I have a 4 year, unfortunately in history. I don’t know if that will count.

What are the DOD requirements chart taking effect in Jan 1 2009?

]]> By: Eric http://www.nothingnoteworthy.com/2008/07/27/i-am-a-cissp/comment-page-1/#comment-170 Eric Tue, 29 Jul 2008 04:18:15 +0000 http://www.nothingnoteworthy.com/?p=221#comment-170 Congrats . . . now you started your addiction. . . . gotta get the rest of the IA certifications . . . ISSEP, CISM . . . good thing is that you can use your study time as CPE now. once again congrats!!!! Congrats . . . now you started your addiction. . . . gotta get the rest of the IA certifications . . . ISSEP, CISM . . . good thing is that you can use your study time as CPE now.

once again congrats!!!!

]]> By: patti http://www.nothingnoteworthy.com/2008/07/27/i-am-a-cissp/comment-page-1/#comment-169 patti Tue, 29 Jul 2008 00:39:48 +0000 http://www.nothingnoteworthy.com/?p=221#comment-169 My company probably won't give me an out-of-cycle pay raise for becoming a CISSP, so it will be next year before I know if CISSP translates to $$ for me, personally. In my case, I went for the CISSP for two reasons: 1) justify my continued existence, since I haven't yet completed my college degree (I'm part-timing it), and 2) get me on the DoD requirements chart that takes effect January 1, 2009. In order to be a CISSP, you have to show either five years of direct work experience, or four years + a college degree. It looks like you can also go for it with four years + a Security+ certification. (https://www.isc2.org/cgi-bin/content.cgi?page=1016) If you don't have the required years of experience, you can still take the exam and become an Associate until you do have the required years of experience. My company probably won’t give me an out-of-cycle pay raise for becoming a CISSP, so it will be next year before I know if CISSP translates to $$ for me, personally. In my case, I went for the CISSP for two reasons: 1) justify my continued existence, since I haven’t yet completed my college degree (I’m part-timing it), and 2) get me on the DoD requirements chart that takes effect January 1, 2009.

In order to be a CISSP, you have to show either five years of direct work experience, or four years + a college degree. It looks like you can also go for it with four years + a Security+ certification. (https://www.isc2.org/cgi-bin/content.cgi?page=1016) If you don’t have the required years of experience, you can still take the exam and become an Associate until you do have the required years of experience.

]]> By: curiousg http://www.nothingnoteworthy.com/2008/07/27/i-am-a-cissp/comment-page-1/#comment-168 curiousg Mon, 28 Jul 2008 17:29:37 +0000 http://www.nothingnoteworthy.com/?p=221#comment-168 Also, do you have to have 5 years of experience before you can take that exam? Or is it three? Also, do you have to have 5 years of experience before you can take that exam? Or is it three?

]]> By: curiousg http://www.nothingnoteworthy.com/2008/07/27/i-am-a-cissp/comment-page-1/#comment-167 curiousg Mon, 28 Jul 2008 17:28:04 +0000 http://www.nothingnoteworthy.com/?p=221#comment-167 Hi, I am curious if your new title has won you more money? I have completed my security+ cert (yes, I know not nearly as famous and fancy). I am wondering if it is worth my time to study for the cert. Thanks. Hi,

I am curious if your new title has won you more money? I have completed my security+ cert (yes, I know not nearly as famous and fancy). I am wondering if it is worth my time to study for the cert. Thanks.

]]>