I'm looking to expand my skillset to encompass Enterprise Architecture. I am currently a CISSP and CCSP in good standing. The TOGAF certification has peaked my interest, but wanted to see what other members thoughts are on this certification and how it compliments what you currently have?
Thank you,
-Ed
I too am a CISSP and CCSP. I have the TOGAF and ITIL certifications and feel that they complement the demonstration of expertise and experience I have very nicely. It shows the full lifecycle from the beginning of architecture, portfolio, application design, engineering, build, test, operate, run, through decomm. It's been well recognized by my employer and auditors.
I'm looking at closing out with the HCISPP since I will be studying this certification with my brother. I am however, looking at either doing my Masters in Cyber Security, AWS Certified Solutions Architect, or CRISC and that I will be finished.
At one time, I was looking at ITIL, but the organization I work for, people who say they are ITIL certified here don't follow through or actually practice it. If my next (future) organization sends me to training for it, I'll do it, but not a motivator for me. I did the TOGAF to expand on the architecture side of the house, and also to solidify that I have knowledge and background in Enterprise Architecture. Unfortunatley again, the other "architects" here down play my certification since they seem to hand out that title here, so I know this cert will help me somewhere else.
Lets get down to the real truths here: If I offend any,one this was not my intention:
The name Enterprise Architect, from my recent experience locally at an Enterprise Architect conference, was a) it was not named Enterprise Architecture Conference, they removed the name Enterprise. b) There have been too many people assuming the title and therefore the role of "Enterprise Architect", but in fact the reality they are Technical Architects, with no actual practice in the 'art". One question asked during the conference, is there any practitioners under the age of 35 years old. There were none - it takes business acumen and associated experience, plus to prove you really are entitled to the title - then go for Open Group industry certification. It's rather like me being being an Instructor for Team Solution Design or Architectural Thinking courses within my organisation - there are mandatory courses for people wanting to be practitioners, but we still have to go through real certification processes, before we become recognised as actual architects. We cannot simply call ourselves Architects, unless you have been formally certified and recognised as such. Plus every three years, one has to go through formal re-certification to verify good standing and practicing the art in the "buff" in reality with actual real scenarios as required by the Open Group, who run the TOGAF certification examinations etc. Obtaining TOGAF certification is a good start, a good baseline, you can now understand what an Enterprise Architect should be doing and working within an organisation, and recognise short cuts and failings etc.
My organisation creates and develops many methodologies, which our IP, but often we find clients like the techniques so much they adopt themselves. Team Solution Design is a pre-sales approach to ensure a consistent approach within many groups, so we have reference architectures and actively use to speed up the process of Solution Design and engagements. Architectural Thinking, is getting down to the real plumbing, the thinking about how to look at many different perspectives, how to turn an idea into reality by going through the process and adopting different methodologies appropriate for the situation you are dealing with - regardless of whether it is Service Orientated Architecture, Agile Methodology, DevOPS etc etc TOGAF is a recognised methodology. and accepted during an engagement, but often you will find specialist areas, which requires an appropriate response. Enterprise Architecture keeps you in alignment with the business direction and objectives of the organisation - but there are many so state they are "Enterprise Architects" but in reality they are not.
The same principles apply to Security engagements. It is fantastic that you have achieved TOGAF certification, it provides a good knowledge baseline - now if you are serious, go practice it and go for full certification as an architect, then you will have full respect and recognition in the field as a practitioner.
Regards
Caute_cautim