Table of Contents

General Advice

• Be selective:
  • This isn’t Pokemon; don’t try to collect them all.
  • There are literally hundreds of cyber and IT certifications.
  • Some certifications and trainings are expensive.
  • Plus, you only have so much time in a day.
• What certifications are for:
  • Use certifications to learn, if that suits your style, or to get a foot in the door with HR and Hiring Managers for certain job applications.
  • Most cyber jobs do not require specific certifications, but some treat certifications as advantageous.
  • Look at job descriptions for cyber roles that interest you to get a sense of current market demand.
• What certifications are not for:
  • Having a professional certification earned by passing a multiple-choice test usually does not prove you can do something.
    • But there are exceptions, such as for the hands-on certifications related to hacking or specific tools/platforms. You can’t earn those without proving you can do something.
  • Conversely, not having a certificate does not prove that you cannot do something.
• Generic certification pathway:
  • Get a Network+ or Security+ certification sooner.
    • It assumes no prior knowledge, introduces basic concepts, and shows genuine interest.
  • Get a CISSP later.
    • It’s a common way to get past gatekeepers.
    • Even if you pass the exam, you have to prove at least 4 years of work experience to officially obtain the credential.
  • Along the way, follow your passion.
    • At any stage, pursue any other certs or trainings that pique your personal interest.
    • Your intrinsic motivation to study what interests you is precious renewable fuel.

Introductory Cyber Certifications

Examples:

• Google Cybersecurity Certificate
• CompTIA Security+
• Security+
• CCNP

Intermediate Cyber Certifications

Examples:

• CISSP
• CISM