Having worked at getting our employees certified in Security+’since 2008 and holding it myself since 2010, I cannot really recommend it. DoD started the mess, but because of private industry following them, Security+ no longer differentiates a candidate; the untrue tales of where the employees are needed is not at entry level which the money grabbers always fail to identify to thise taking money from. So they have flooded the job market with inexperienced people. I would recommend the CC and the SSCP (similar to Security+ but $249 vs $404 and no performance based questions). Just remember the perspective that are answering it from. Because of that Luke’s How to Think Like a Manager was the best book for me because frames the needed mindset to answer the questions correctly for the CISSP. Feel free to ask me questions about any of them. Best wishes.

I work with certifying our CS workforce, and the CC is definitely entry level. Now does the self-study training provide everything need to know? Maybe not for a true entry level, but like I tell those working on it, make sure that you know what is in the exam objectives (use them for knowledge gap analysis), and look at the recommended references for any weak areas. I volunteered when ISC2 asked for that for the pilot. I already had a CISSP. Was it an easy exam? No, but it was very appropriate for those learning cybersecurity theory.

I am coming here from passing the Sec+ 701. It will be interesting to see how the training will go. My ultimate goal is to do CISSP down the road. Good luck everyone. There are so many Cyber jobs out there they can't fill them. We just have to get ourselves ready. Let's Goooo!

 

Taz

@MiTazG  Security+ is most closely comparable to ISC2's SSCP except that it is much less expensive ($249 vs $404) and no PBQs (Performance Based Questions).  I would definitely recommend ISC2's CC before a CISSP while the self-study training and exam voucher are no cost for most.  I think that it reduces a lot of the stress of an ISC2 exam before the beast (CISSP).  This is also the general knowledge that need for the CISSP (no analytical questions).  Also small victories are good.  I do hold Security+ but only keep it because help our people and others trying to earn or maintain it.  I have a CISSP, SSCP, and CC as well if have questions on any of those.  

 

I do have concerns with you saying what I call The Big Lie.  There are a lot of empty positions out there, but very few are at entry level.  Most of the unfilled ones require at least 5 - 10 years of experience.  CompTIA and a lot of "schools" that teach it recite that story a lot which helps them financially but not the people that they tell it to.  This is why CompTIA brags at over 700K certified.  Unfortunately that no longer differentiates a candidate.  This represents the competition, and I would guess that most have zero experience.  I don't want to discourage you, but this is the reality of the situation.  Best wishes.