On 4/12/2010 2:03 PM, Matt Parsons wrote:
I am a CISSP with programming experience, static code analysis and web
penetration testing. I am thinking about taking the CSSLP. I just
bought the review book. Is it worth getting this certification? Is
it going to raise my rates and help me
Hi Matt,
Way back on May 9, 2007 I wrote my thoughts about certifications like these
down. The article, called Certifiable was published by darkreading:
http://www.darkreading.com/security/app-security/showArticle.jhtml?articleID=208803630
You can find all of my columns written over the last
Keyboard Cowboy,
Education is always a good thing. I think kids should have the opportunity
to learn both sides of software security. Great suggestion.
Kids, by nature, are drawn to things that are taboo and demonized. Which
hacking no doubt falls into, and according to Daniel, also Angelina
Hello SC-L,
We have a few new shows on the OWASP Podcast Series that may interest
you. They include:
Show 64: An interview with Andy Ellis (Director of Security @ Akamai)
http://www.owasp.org/download/jmanico/owasp_podcast_64.mp3
Show 65: AppSec Roundtable with Boaz Gelbord, Dan Cornell,
Gary McGraw wrote...
Way back on May 9, 2007 I wrote my thoughts about
certifications like these down. The article, called
Certifiable was published by darkreading:
http://www.darkreading.com/security/app-security/showArticle.jhtml?articleID=208803630
I just reread your Dark Reading post
ACM SIGCSE will be pushing more information shortly on the K-12
program suggestions. I've heard it will include security.
-Rob
On Tue, Apr 13, 2010 at 9:27 PM, Jeremiah Heller
jerem...@inertialbit.net wrote:
an interesting point. if it were not socially unacceptable to perform ethnic
Having a CISSP certification I know it is more than just passing the
test. You are not certified as a CISSP until you have another CISSP
attest to your qualifications and you submit a detail resume of your
security experience by domain to (ISC)2 auditors. If the auditors do
not feel your
On 14 Apr 2010, at 16:24, Wall, Kevin wrote:
I just reread your Dark Reading post and I must say I agree with it
almost 100%. The only part where I disagree with it is where you wrote:
The multiple choice test itself is one of the problems. I
have discussed the idea of using
Jeremiah Heller writes...
do security professionals really want to wipe hacking
activity from the planet? sounds like poor job security to me.
Even though I've been involved in software security for the
past dozen years or so, I still think this is a laudable goal,
albeit a completely
You are absolutely right Paul. The problems with ignorance and
abstinence-based approaches to child education extend out well beyond
the Bible Belt, and can be found all over the US. I should have cast a
wider net. Also, great job at ruining a good laugh.
http://aspe.hhs.gov/hsp/abstinence07/
Not sure that would work either though.
Many secdev people are introverts. In their shell, they won't debate
the validity of a position, including a wrong answer. Zone that into a
response in the exam. It's one thing to say there is no correct
answer, but the way the questions are set at ISC2,
On Apr 14, 2010, at 11:19 AM, Wall, Kevin wrote:
Jeremiah Heller writes...
do security professionals really want to wipe hacking
activity from the planet? sounds like poor job security to me.
Even though I've been involved in software security for the
past dozen years or so, I still
Dana Epp wrote:
Not sure that would work either though.
Dana,
My comment was meant tongue-in-cheek. Guess I used the wrong
emoticon. Figured that ';-)' would work 'cuz I never can remember
the one for tongue-in-cheek. I've seen several variations of the
latter...
:-? :-Q :-J
13 matches
Mail list logo
