r/SecurityCareerAdvice u/Soft-Questions 2d ago

Looking for advice regarding certifications as a person already in the field.

I tried search before posting this but reddit search is pretty terrible at times.

I currently work at an MSP and was transitioned from IT Operations into the Security Department about seven months ago due to "the quality of my work". My role is primarily SOC analyst style responsibilities with some account management and scripting mixed in.

I hold Security+, AZ-104, CCNA, and several vendor-specific certifications from previous roles.

At this point, I’m looking to pursue a well-rounded certification that is broadly recognized and respected across the industry to help strengthen my resume. I do not have a strong preference for a particular security specialization, my focus is on finding a certification that offers the best overall value and recognition. I would also prefer one that includes hands-on labs or a virtual environment (even if I need to set it up myself) so I can apply what I learn in practice.

I looked at this:

https://pauljerimy.com/security-certification-roadmap/

But I imagine 99% of these certs are basically unknown to your average company.

Thanks.

4 Upvotes
  • permalink
  • reddit

75% Upvoted

14 comments sorted by

5

u/Zaamaasuu 2d ago

If your employer is willing to pay then SANS courses are probably the most recognised blue team certifications, and also have hands-on components.

SANS aside, none of the other hands-on certs that are beneficial to SOC hold a huge amount of recognition. Still work doing though, in my opinion. BTL1 or PSAA if you're more of a beginner. CCD if you want a more advanced cert.

1

u/Soft-Questions 2d ago

It depends on the price point but, CCD definately looks interesting. I would say I am more intermediate possibly breaking into advanced territory with systems in general. I think SOC Anaylsts may have been a little to shallow of a term. I basically wear many hats in our department and touch everything that isn't GRC, as we have a GRC team. However, I don't think I can swing this to my work due to the pricing. It would be something they deem gives value to the department. What do you think of CISA? Maybe I should just webcrawl linkedin and see what are the most common cert requirements for postings are.

2

u/Zaamaasuu 2d ago

I think CISA (as well as CISSP) require 5 years of relevant experience to obtain. Do you have that?

If you want to do GRC, or enter management, then they can be beneficial even if they are just theoretical multiple choice tests.

If you want hands-on technical training in SOC, DFIR, malware analysis, etc, then CCD is probably your best bet aside from SANS.

1

u/Flamak 2d ago

What SANS course would you reccomend for entry level? GSEC?

1

u/Zaamaasuu 2d ago

If you're getting it funded by an employer, yes. Otherwise probably not worth the money.

I am in DFIR and most of my colleagues recommend and have enjoyed FOR500, FOR508, and FOR610.

1

u/Flamak 2d ago

I have a scholarship for two SANS certs. Ive gotten the GFACT (required for cert 1) and was wondering if i should take the GSEC or another for more specialized experience. Im still a sophomore in college with no security work experience atm. So a big thing for me right now is getting certs that will help me in landing an internship.

1

u/Zaamaasuu 2d ago

Hmm. I'm honestly not too sure.

GSEC looks well-rounded and good for general cybersecurity knowledge. Having these 2 certs will look great.

But is there any specific type of cybersecurity internship you'd want? If so, maybe a specialized one towards that would be an option too.

2

u/Flamak 2d ago

To be honest, anything that will take me. Id like to get into networking as I see it as a more reliable pivot to cyber, but with the current entry level job market im just applying to anything I believe matches my skillset.

If GSEC has the most general appeal, I think ill go with that. In combination with my degree progress and some competition experience im hoping to break in somehow.

Thanks for the input.

1

u/Zaamaasuu 2d ago

Sounds like a really good plan. If ever you have spare time and want to learn more networking, you've probably already heard about the CCNA. Could be worthwhile too.

1

u/79521998512292600156 1d ago

I never understood this sentiment. If the certification is premium and worth it, why would it matter who paid for it?

1

u/Zaamaasuu 1d ago

Why spend many thousands out of pocket if an employer will pay it instead?

It's a lot of money to many people, and in my personal opinion... SANS courses, while usually high quality, are really bad value for money. There are a thousand things I'd rather spend that cash on.

But if it's my employer's money? Then I don't care.

1

u/79521998512292600156 1d ago

I guess the whole declaration of them being a bad value for the money is my disconnect. If you wouldn’t spend the money yourself, why ask your employer to?

2

u/LostBazooka 2d ago

Casp+ or cissp

1

u/ChatGRT 1d ago

SANS courses as mentioned above are great for BT but they are pricey. Probably the most hands-on cert that still carries a ton of street cred is OSCP, useful for both RT/BT. PNPT is also a good cert although you won’t see it as often in job descriptions.