ISC2 certifications

Written By Input Drive

Obtaining and maintaining an ISC2 certification, such as the CISSP (Certified Information Systems Security Professional), offers significant value but also comes with challenges. Here’s my breakdown:

Pros

  1. Industry Recognition and Credibility: ISC2 certifications are widely respected in the cybersecurity field. They demonstrate a professional’s commitment, knowledge, and expertise, often serving as a minimum requirement for senior roles.

  2. Career Advancement and Salary Potential: Many employers prioritize ISC2-certified professionals for promotions and leadership roles. Certified individuals typically earn higher salaries, as these credentials are linked with specialized skills and knowledge.

  3. Networking and Community: ISC2 certifications provide access to a global network of professionals, which could be beneficial for career growth, mentorship, and staying informed about industry trends.

  4. Continuing Education and Skill Updates: To maintain certification, one must complete Continuing Professional Education (CPE) credits, which encourage ongoing learning and keep you updated on cybersecurity best practices and emerging threats.

Cons

  1. High Costs: The initial certification exam can be expensive, and maintenance costs are ongoing. This can include membership fees, exam retake fees (if necessary), and costs for acquiring CPE credits.

  2. Rigorous Preparation and Stress: Preparing for exams like the CISSP requires a significant time commitment and can be challenging, especially for those with work and or personal responsibilities.

  3. Maintenance Requirements: To keep the certification active, you need to earn CPE credits and pay annual maintenance fees. This can feel like a burden, especially if professional growth doesn’t require the certification over time.

  4. Evolving Market Relevance: With new certifications and security skill sets emerging, some professionals find the (ISC)² framework to be too theoretical, potentially lagging behind rapidly evolving threats and technologies in the field.

Overall, an (ISC)² certification is subjectively valuable investment in one's cybersecurity career and requires sustained commitment.

I have terminated both my SSCP and CISSP with ISC2 as of November 2024, here are the reasons why, in case someone is deciding to pursue ISC2 certifications or follow suit.

1. Outdated and Theoretical Content

2. High Costs with Limited ROI

3. Better Alternatives Exist

4. Requirement to Earn CPE Credits Feels Arbitrary

5. Shift Toward Skill-Based Hiring

6. ISC2’s Slow Response to Industry Trends

In summary, while ISC2 certifications are prestigious and widely recognized, they may not provide the practical skills, immediate relevance, or return on investment that today’s cybersecurity professionals need. For many, skill-based certifications, cloud-focused credentials, or practical training may be better options for advancing in the cyber field and beyond.

#isc2 #certifications #cyber #opinion

Input Drive

https://x.com/greg_inputdrive
Previous

update your DNS at the network level
Next

what is your favorite internet browser