× This is the optional category header for the Suggestion Box.

Topic-icon GSEC vs GCED any Advise for someone with Specialist Diploma

1 month 1 week ago #3784 by Ong-CY-google

Hi,

I am deciding to take GSEC or GCED for SANS certification after my Specialist Diploma in Information Security and Forensics.

Is it advisable to go for both or either one of them or to go for more advanced certifications?

Please Log in or Create an account to join the conversation.

1 month 6 days ago #3788 by quinton7

hi. can i know what r u working as right now? this will help in determining your choice of certifications.

Please Log in or Create an account to join the conversation.

1 month 6 days ago #3789 by Ong-CY-google

I am a solution consultant looking to move into IT security area (as well as to get out of the company :P). My work is mainly technical based going through project deployment and the entire SDLC, including programming.

Been looking at certifications like OSSA, QISP, SSCP and Security+ as a start after my Specialist Dip. CISSP and CISA is out at the moment due to the no of years of experience needed. May even consider OSCP or a degree in Cybersecurity in NUS but SANS certifications is among those of a higher priority, but there are just so many of them and have no idea which to start with.

Please Log in or Create an account to join the conversation.

1 month 5 days ago #3790 by quinton7

Is your current role dealing with security-related scope? Or is it just the infra side?

It depends on what you hope to get out from your career, and your skills. If you hope to be a security specialist doing web pen test and so on, yes you can focus on the certifications you mentioned. Otherwise a CISA or CISSP should suffice. Employers usually look at the candidate's skills and competency. hope this advice helps.

Please Log in or Create an account to join the conversation.

1 month 5 days ago - 1 month 5 days ago #3791 by Ong-CY-google

Hi Quinton7, thanks for your advise but I need some clarifications.

I am doing ECM (Enterprise Content Management) solutions focusing more on Applications and Systems. Wanted to move into the security field but realized it is very difficult to move without a certification.

Wish to focus on IT Audit and Pentest, malware analysis or Threat Intelligence. CISSP and CISA need 5 years if related IT security experience. It will be difficult for me who has much lesser IT security experience to obtain the full certification. That's why I am looking at GSEC/GCED/ OSSA etc as a start but was confused especially between GSEC and GCED or I should go for the most specialized one like GCIH , GPEN or CREST.

Please Log in or Create an account to join the conversation.

1 month 4 days ago #3793 by twentysomething

Hi Ong, firstly you are not alone, I have seen many going thru the same path as you. Its not easy but neither is hard. You need to start somewhere, go with your heart and passion. Honestly as a practitioner, you will need more than 1 certification and it's never ending so don't need to think too much and too long, go for it and from there you will find your path. Cheers!

Please Log in or Create an account to join the conversation.