How hard are these security certifications?

[Winchester]

I need to have one of the following or pass the CHSS (Certified HIPAA Security Specialist) exam.

1) CISSP/SSCP from (ISC)²
2) SCNP/SCNA from SCP
3) Security+ from CompTIA
4) CISA/CISM® from ISACA



Opinions?

 

[Jzero]

I've been studying for the CISSP. It's a pretty tough exam because the "common body of knowledge" (CBK) is pretty wide. It also requires 4 years of experience in a field related to the CBK (3 years if you have BS/BA or above).

You also have to get continuing ed credits to maintain your certification.

Among the people I talk to, CISSP seems to be the "better" cert right now, followed by CISM.

 

[BrokenVisage]

Acronym overload! IDK what ANY of them mean. But anything involving HIPPA must be a PITA IMHO.

 

[Rapidskies]

You could probably knock security+ out in a week or so, that one is by far the easiest to obtain out of the bunch.

 

[Feldenak]

Security+ was relatively easy. I've been thinking about the CISSP but I need 2.5 years of experience.

 

[nightowl]

I know people who have read books on the CISSP and passed. The test is not all that hard. It is just worded funny and you need to be able to concentrate for that long on the questions without losing interest.

 

[Winchester]

HIPAA is fun. Possibly lots of money since it is in its beginning years and it is very confusing so no one wants to get into it.

 

[Megadeth]

Security+ will be the easiest but don't underestimate it. If you don't have any experience in the subject it will take a month or 2 of study. If you have have some job experience where you deal with Policies, SLA, BCP and some cryptography you should be able to rush through a book to brush up and be fine I would guess.

If you have no experience start with Secuirty+
You could also go in the direction of Certified Ethical Hacker (CEH)

 

[FoBoT]

i would like to take 3) Security+ from CompTIA

 

[Winchester]

I have ~ 8 years of experience and will have my masters next month. Shouldnt be a problem, just a matter of studying. I went the degree route instead of the certification route.

 

[Jzero]

Originally posted by: Winchester
HIPAA is fun. Possibly lots of money since it is in its beginning years and it is very confusing so no one wants to get into it.

And it's boring as sh!t! If you've got the patience for it, you can make a good living in both compliance and DR/BCP

 

[gamepad]

What is a HIPAA Security Specialist?

 

[Winchester]

Yeah it can be boring, but if you are a consultant and get to travel and do audits and make a ton of money doing it, it is worth it in my mind.

Why do you think patent attorneys are paid the most... because its boring.

 

[Jzero]

Originally posted by: Winchester
Yeah it can be boring, but if you are a consultant and get to travel and do audits and make a ton of money doing it, it is worth it in my mind.

Why do you think patent attorneys are paid the most... because its boring.

Yep. More power to you. DR/BCP is the one part of my job I really dislike. Thankfully, my company does not have a lot of regulatory requirements.