I, like many here, have had computers as a hobby for a long time. That said, I don't have the paper to prove it.
I came across a job listing at a company where I know someone and have applied through this person/am in contact with the hiring manager. Said hiring manager is out of town until next week. That individual also was hired with, from what I understand, very little direct experience in network security (like me) since he used to work the job I am applying for.
At any rate, the qualifications desired are 0-2 years of experience in IT security. I figure as far as making "foundation" arguments (that is, I know what Group Policy is, can secure basic wireless networks--i.e. I may have zero years of direct experience but am not computer-illiterate) I have a decent shot from that angle.
I was reading the "desired certifications" at the bottom of the listing, researched them and determined the following.
CISSP - On the site, it specifically notes one should have either five years of experience or four with one year credited for relevant Master's degree.
Security+ - Seems to be the most "entry-level" even though as I was reading in the certification thread, it "should not be taken lightly." Recommends two years of experience prior to taking the exam.
Chapter 8, NISPOM - Either I am bad at research or these two are essentially synonyms. Further they seem to refer to a certification for whole IT systems rather than persons. Of course, it's government documentation so I could be misreading.
COMSEC - I could only find one old article on About.com, so I have no idea whether this is a single exam (doubtful as I found nothing) or a more general term.
TL; DR - Applied for IT security job with zero years of experience based on the previous guy coming in the same way I would (newbie @ security, has working computer knowledge). All but one of the desired certifications (Security+) seem to be too high-level (CISSP), refer to systems (NISPOM/Chapter 8) or lack information (COMSEC). I'm totally willing to own that I don't have a Security+ cert, but the rest seem...weird.
Did I miss something?
I came across a job listing at a company where I know someone and have applied through this person/am in contact with the hiring manager. Said hiring manager is out of town until next week. That individual also was hired with, from what I understand, very little direct experience in network security (like me) since he used to work the job I am applying for.
At any rate, the qualifications desired are 0-2 years of experience in IT security. I figure as far as making "foundation" arguments (that is, I know what Group Policy is, can secure basic wireless networks--i.e. I may have zero years of direct experience but am not computer-illiterate) I have a decent shot from that angle.
I was reading the "desired certifications" at the bottom of the listing, researched them and determined the following.
CISSP - On the site, it specifically notes one should have either five years of experience or four with one year credited for relevant Master's degree.
Security+ - Seems to be the most "entry-level" even though as I was reading in the certification thread, it "should not be taken lightly." Recommends two years of experience prior to taking the exam.
Chapter 8, NISPOM - Either I am bad at research or these two are essentially synonyms. Further they seem to refer to a certification for whole IT systems rather than persons. Of course, it's government documentation so I could be misreading.
COMSEC - I could only find one old article on About.com, so I have no idea whether this is a single exam (doubtful as I found nothing) or a more general term.
TL; DR - Applied for IT security job with zero years of experience based on the previous guy coming in the same way I would (newbie @ security, has working computer knowledge). All but one of the desired certifications (Security+) seem to be too high-level (CISSP), refer to systems (NISPOM/Chapter 8) or lack information (COMSEC). I'm totally willing to own that I don't have a Security+ cert, but the rest seem...weird.
Did I miss something?