fwiw, I've interviewed my fair share of CISSPs who didn't have a basic understanding of infosec... with the boot camps these days, people don't "learn" anything... they cram for 1-2 wks, shoving everything into short-term rote memory, and then they take the test and promptly forget everything... this is especially true since the feds began mandating CISSPs for contractors... at least here in the DC metro, the pool of candidates has become extremely watered down over the last 5 or so years...
Joe Teff wrote: > I notice certs like CISSP when hiring. It says the person has a basic > understanding of all IS security areas. Nothing more. If someone can't > pass the CISSP then I have to wonder why. > > -----Original Message----- > From: Paco Hope <p...@cigital.com> > To: "SC-L@securecoding.org" <SC-L@securecoding.org> > Date: Thu, 19 Mar 2009 11:36:45 -0400 > Subject: Re: [SC-L] Announcing LAMN: Legion Against Meaningless > certificatioNs > > On 3/18/09 5:29 PM, "Jeremy Epstein" <jeremy.j.epst...@gmail.com> wrote: > > > If you don't have a CISSP, CISM, MCSE, or EIEIO - and you're proud > of it > > ...then I'd say you have an overly simplistic view of the world. > > Anyone who believes that a credential automatically conveys some magical > knowledge that you didn't have before is just as overly-simplistic as > someone who disparages all credentials equally. It just isn't a > black and > white world. > > Paco > -- > Paco Hope, CISSP, CSSLP > Technical Manager, Cigital, Inc > http://www.cigital.com/ ? +1.703.585.7868 > Software Confidence. Achieved. > > > _______________________________________________ > Secure Coding mailing list (SC-L) SC-L@securecoding.org > List information, subscriptions, etc - > http://krvw.com/mailman/listinfo/sc-l > List charter available at - http://www.securecoding.org/list/charter.php > SC-L is hosted and moderated by KRvW Associates, LLC > (http://www.KRvW.com) > as a free, non-commercial service to the software security community. > _______________________________________________ > > > ------------------------------------------------------------------------ > > _______________________________________________ > Secure Coding mailing list (SC-L) SC-L@securecoding.org > List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l > List charter available at - http://www.securecoding.org/list/charter.php > SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) > as a free, non-commercial service to the software security community. > _______________________________________________ -- Benjamin Tomhave, MS, CISSP fal...@secureconsulting.net LI: http://www.linkedin.com/in/btomhave Blog: http://www.secureconsulting.net/ Photos: http://photos.secureconsulting.net/ Web: http://falcon.secureconsulting.net/ [ Random Quote: ] "I think there should be something in science called the 'reindeer effect.' I don't know what it would be, but I think it'd be good to hear someone say, 'Gentlemen, what we have here is a terrifying example of the reindeer effect.'" Deep Thoughts by Jack Handy _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________