>By the time you're done creating the perfect "Information Security Certification" test everything will have changed.
>The only way for companies to effectively manage it is to hire people who constantly fuck around (with technology) and are always learning (the limits of) new things
Then make the curriculum about fucking around with technology, taught by people who fuck around with technology for a living. Then you get a nice certificate that says you fucked around with technology for a bit and showing that you're capable of fucking around with more technology.
You're right about all the previous certs, but the solution is simple: make the curriculum match how people actually learn in the industry.
>The "safest bet" for someone who really wants to be a great InfoSec professional is to get really good at Linux systems administration
Don't get really good: get pretty good then go learn programming. You talk about jumping between embedded and supercomputers later, but programming/AppSec is more important and way more useful (esp. if you don't already know how to program)
>Learning Windows systems administration isn't as useful IMHO because there's fewer systems
Oh no mate, AD is everywhere and those skills are immensely useful to a large amount of companies. Offensive Security even changed their OSCP exam to have an AD target set.
>The only way for companies to effectively manage it is to hire people who constantly fuck around (with technology) and are always learning (the limits of) new things
Then make the curriculum about fucking around with technology, taught by people who fuck around with technology for a living. Then you get a nice certificate that says you fucked around with technology for a bit and showing that you're capable of fucking around with more technology.
You're right about all the previous certs, but the solution is simple: make the curriculum match how people actually learn in the industry.
>The "safest bet" for someone who really wants to be a great InfoSec professional is to get really good at Linux systems administration
Don't get really good: get pretty good then go learn programming. You talk about jumping between embedded and supercomputers later, but programming/AppSec is more important and way more useful (esp. if you don't already know how to program)
>Learning Windows systems administration isn't as useful IMHO because there's fewer systems
Oh no mate, AD is everywhere and those skills are immensely useful to a large amount of companies. Offensive Security even changed their OSCP exam to have an AD target set.