[Owasp-Mumbai] Certification Help

Bishan Singh c70n3r at gmail.com
Thu Jun 18 03:34:21 EDT 2009


Well I do not disagree much here. But again isn't it economics. There
was a time when CISSP had even greater value than what it has today.
The more people do a certification less unique you are.

Yes CEH is like CCNA in security industry in India.

For an experienced professional, I do not value CEH in his/her CV.
Having said that a starter with CEH on the CV does carry some
weightage. For a seasoned pro I  would like to see GIAC GSSP or WAPT
but even if it isn't there it doesn't matter a lot, unless there are
two candidates on par, one with & one without these certifications.

Some consulting companies need to show CISSP, CISA & CEH numbers to
get empaneled and win business. Certification is something that can
get you in here.

Yes, Backtrack is good, but only if you looking for knowledge, not for
market value.




On Thu, Jun 18, 2009 at 12:36 PM, vaibhav aher<vaibhavaher at gmail.com> wrote:
> Hello Aashish,
> CEH has no values in Indian market to... Coz nowadays out of 100 network
> admin 10 are CEH certified. CEH is like CCNA in India. Dont go for any
> traning of CEH coz it waste of money you can download CBT and eBooks of CEH
> and go thought it.
> If you are going for GIAC the go for GIAC WAPT which is a nice cert, but i
> cant assure you that there is scope in India.
> http://www.giac.org/certifications/security/GWAPT.php
> Or you can also go for SSCP from ISC2 which also has a nice demand in India.
> http://www.isc2.org/sscp/default.aspx
> But at the EOD, it totally depends on how you tackle the interview. So
> certification will not get you directly in to security
> industry. Experience and knowledge is must.
> Thanks
> Vaibhav Aher
> Security Consultant
> +91 09225325661
>
> On Thu, Jun 18, 2009 at 12:23 PM, Aashish Bobade <aashishbobade at gmail.com>
> wrote:
>>
>> Is this means if we are looking for good market value in INDIA  CEH is
>> best?
>>
>> Best Regards,
>> Ashish A Bobade
>> http://TechChase.in
>>
>> On Thu, Jun 18, 2009 at 12:17 PM, Bishan Singh <c70n3r at gmail.com> wrote:
>>>
>>> For VAPT, they have GPEN. GPEN has good value abroad. And from what I
>>> hear it is pretty decent.
>>>
>>> For Application Security they have this Software Security
>>> certification series that has secure programming series for Java, .net
>>> and C. I have heard Java is good. Haven't heard much about others. I
>>> have personally done GNET which is for .Net Security.
>>>
>>>
>>> On Thu, Jun 18, 2009 at 12:01 PM, <nileshkumar83 at gmail.com> wrote:
>>> > Hi Bishan,
>>> >
>>> >    Does GIAC focus on Web Application Security Testing (VAPT) area or
>>> > VAPT
>>> > is just a part of it?
>>> >
>>> > Regards,
>>> > Nilesh
>>> >
>>> > On Thu, Jun 18, 2009 at 11:52 AM, Bishan Singh <c70n3r at gmail.com>
>>> > wrote:
>>> >>
>>> >> I would recommend something from the GIAC. One of the good ones is
>>> >> http://giac.org/certifications/software/gssp-java.php
>>> >>
>>> >> It is a proctored exam. I do not know the cost. Also I think for GIAC
>>> >> certifications it is good to undergo training unless you are a
>>> >> seasoned pro.
>>> >> Sad thing is this training doesn't happen in India.
>>> >>
>>> >> If you are looking for a market value, I do not know how much it
>>> >> carries
>>> >> in India. Recruiters usually look for CEH.
>>> >>
>>> >> On Thu, Jun 18, 2009 at 11:08 AM, Aashish Bobade
>>> >> <aashishbobade at gmail.com>
>>> >> wrote:
>>> >>>
>>> >>> Hi All,
>>> >>>
>>> >>> May be this question already raised ,Can any one help me to find out
>>> >>> best
>>> >>> certification for Web Application Security Testing..
>>> >>>
>>> >>> Some people suggest to go for CEH and some CISSA.. I am confused
>>> >>> because
>>> >>> most of the certification exams have network security related
>>> >>> syllabus..
>>> >>>
>>> >>> Which will be best if I want to focus on Web Application Security
>>> >>> Testing.
>>> >>>
>>> >>>
>>> >>>
>>> >>> Thanks,
>>> >>> Ashish A Bobade
>>> >>> http://TechChase.in
>>> >>>
>>> >>> _______________________________________________
>>> >>> OWASP-Mumbai mailing list
>>> >>> OWASP-Mumbai at lists.owasp.org
>>> >>> https://lists.owasp.org/mailman/listinfo/owasp-mumbai
>>> >>>
>>> >>
>>> >>
>>> >>
>>> >> --
>>> >> http://apps3c.blogspot.com
>>> >>
>>> >> _______________________________________________
>>> >> OWASP-Mumbai mailing list
>>> >> OWASP-Mumbai at lists.owasp.org
>>> >> https://lists.owasp.org/mailman/listinfo/owasp-mumbai
>>> >>
>>> >
>>> >
>>> >
>>> > --
>>> > Thanks & Regards,
>>> > Nilesh Kumar,
>>> > Security Specialist | SDG Corporation
>>> > www.sdgc.com
>>> > www.nileshkumar83.blogspot.com
>>> > www.linkedin.com/in/nileshkumar83
>>> > Mobile- +91-9891524880
>>> >
>>>
>>>
>>>
>>> --
>>> http://apps3c.blogspot.com
>>
>>
>> _______________________________________________
>> OWASP-Mumbai mailing list
>> OWASP-Mumbai at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-mumbai
>>
>
>
>
> --
>
>
> _______________________________________________
> OWASP-Mumbai mailing list
> OWASP-Mumbai at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-mumbai
>
>



-- 
http://apps3c.blogspot.com


More information about the OWASP-Mumbai mailing list