[Owasp-portland] continuing ed

Matthew Lapworth matthewl at bit-shift.net
Mon Jun 25 20:15:04 UTC 2012

I'm a web dev & have the CISSP. I did the self-study route using Shon
Harris' book and found the test to be fairly easy. You could easily do the
self-study route in the evening and not burn up all your free time. Then
just schedule the test and you're golden.

As for justification, if you have to interface with engineers or other
process driven people at your company it'll help you manage those
interactions with a security hat on. Also, as  your coming up with new
feature requests you'll be able to better evaluation the security of those
requests and make suggestions to improve the security posture of the
feature before it goes into development, where it's cheaper to fix.


On Mon, Jun 25, 2012 at 12:01 PM, David Pirolo
<webmaster at warnerpacific.edu>wrote:

> Are there any in this group who are web developers with CISSPs (or maybe
> some other cert)?
> I've been considering a CISSP, but I haven't had the business
> justification to take time out of my work day to maintain it since I
> work for a marketing department and they don't really consider it much
> of a priority.
> Outside of writing a book, I'm not crazy about spend up all my personal
> time for this so am trying to figure out if there is a way to justify it
> to a marketing department or if any of you have just bit the bullet for
> a period of time. Thoughts, insights?
> Do OWASP meetings offer credit?
> -David
> _______________________________________________
> Owasp-portland mailing list
> Owasp-portland at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-portland

Matthew Lapworth

We are what we repeatedly do. Excellence then is not an act, but a habit.
  - Aristotle
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-portland/attachments/20120625/27421ad3/attachment.html>

More information about the Owasp-portland mailing list