Security Certs: A Simple Guide📜
Which One is Right for you?
Certs, Certs, Certs…
Sometimes it feels like it’s all anyone in the Cyber Security content creation space talks about.
Open YouTube and if your algorithm is anything like mine, it’s a flurry of:
“Best Cyber Security Certs”
“Which Security Cert to Get in 2024”
“Security Certs Ranked”
Why is this? Well, in my opinion (some hard disagree), certs act as a way to level up fast. They offer the dedicated learning of a subject within a degree but without the four-year slog. They offer a way to stay accountable and ultimately show employers you’re someone who takes their career seriously enough to study outside the 9-5.
Why all the hate then? An argument can be made, usually by industry veterans, that certs don’t actually prove anything. They show that the individual has managed to remember a bunch of facts for a short period of time and don’t compare to “real” industry experience.
Personally, I really like certs. I think they offer a way for beginners to stay on track with a dedicated, well-trodden learning path. My motivation to self-study can be somewhat wavering (have you ever played Helldivers 2?!) but with the looming fear of an exam date, they light a fire under my bum. Not to mention in today’s tough job market, anything that can move the needle in your direction - why wouldn’t you do it?
Anyway, train of thought over, here’s why you probably opened this email.
Which Cyber Security Cert is Right for you?
I am going to break it down into two sections: Cyber Security and Cloud. Then, within each section, I will lay out beginner, intermediate, and advanced certs with a small overview.
Cloud Certifications
Beginner
AWS Certified Cloud Practitioner
An entry-level certification that provides a fundamental understanding of AWS cloud services, concepts, and best practices. Ideal for those new to cloud computing.
Microsoft Certified: Azure Fundamentals
The AWS alternative (AWS vs Azure) Covers basic cloud concepts and Azure services. Suitable for beginners looking to understand Microsoft Azure’s core services and solutions.
Intermediate
AWS Certified Solutions Architect – Associate
This cert dives deeper into designing and deploying scalable systems on AWS. It’s suited for those with some experience in AWS.
Microsoft Certified: Azure Administrator Associate
Focuses on managing Azure resources, including storage, security, and networking. Ideal for professionals with some Azure experience.
CompTIA Cloud+
This certification covers the skills needed to secure, maintain, and troubleshoot cloud infrastructure services. It's suitable for professionals with experience in cloud technologies who want to enhance their skills in managing cloud infrastructure across various platforms.
Advanced
HashiCorp Certified: Terraform Associate
This certification validates proficiency in using Terraform, a tool for building, changing, and versioning infrastructure safely and efficiently. It’s ideal for professionals involved in infrastructure as code and DevOps practices.
Certified Cloud Security Professional (CCSP)
Offered by (ISC)², this certification demonstrates advanced technical skills and knowledge to design, manage, and secure data, applications, and infrastructure in the cloud using best practices, policies, and procedures. It’s suitable for experienced professionals in cloud security.
Cyber Security Certifications
Beginner
CompTIA Security+
An entry-level certification that covers foundational cybersecurity skills and knowledge. Ideal for those new to the field, offering a broad overview of security concepts, network security, and risk management.
Certified Ethical Hacker (CEH)
Focuses on identifying and addressing vulnerabilities in systems. It's suitable for beginners interested in ethical hacking and penetration testing.
Intermediate
Certified Information Systems Security Professional (CISSP)
Suitable for professionals with some experience, this certification covers a wide range of security topics including risk management, asset security, and security engineering.
Certified Information Security Manager (CISM)
Aimed at those looking to move into management roles, this cert focuses on managing and governing an enterprise’s information security program.
Advanced
Offensive Security Certified Professional (OSCP)
Known for its hands-on approach, this cert is highly regarded in the penetration testing community. It requires demonstrating the ability to attack and penetrate various machines in a controlled environment.
Certified Information Systems Auditor (CISA)
Suitable for experienced professionals, this cert focuses on auditing, control, and assurance. It’s ideal for those who want to specialise in information systems auditing.
I hope you found this useful, and remember, there are literally hundreds of certs. Just because I haven’t mentioned it here doesn’t mean it’s not worth getting... everyone is on their own journey.
This article has been a sneak preview from my upcoming eBook. It includes discussions like this, projects to build your cyber and cloud skills, with simple, jargon-free explanations. Pre-Order here:
“A Practical Breakdown: Understanding Cloud & Security with simple Projects you can do at home.”
Thank you for reading: Keep it secure, keep it light-hearted!
WJPearce - CyberBrew