John H "looking for work"    

Looking for some feedback.

Currently maintain 4 SANS certifications. Was 5 but one was retired.

Been out of technical side of things for 10 years or so. Still dabble. Love playing. Tryhackme. INE. Homelabbing. That sort of thing.

Now doing consulting. vCISO work. Love it.

Questions I'm thinking about ...

Do I keep maintaining these certs?

Do I move to certs like CRISC, CISM, etc ?

Or is the whole certification path just a waste and would I better to learn more on my own and forget certifications?

Im in my mid 50s so definitely need to prioritize my path forward.

Thoughts?

#SANS #CERTIFICATION

Jun 15, 2023 at 5:49pmWeb
Show threadTindraJun 15, 2023

@mrclark @jeremyathompson for me, the technical certs a) give me a bit more flexibility when thinking about career path - I don’t *have* to stay managerial (or, at least, that’s what I’m telling myself) and b) force me to keep up on the technical side, so I can ensure the policy side is grounded in current reality, not the reality of the last time I was in an analyst role.

So, I would say, if you can maintain that “currency” without certs, then it may be worth letting them expire.

Show threadshellsharksJun 16, 2023
@mrclark Been wondering this myself lately as I have some SANS certs and CISSP to renew. I feel like certs carry less weight lately and honestly I have so many to refresh... Certainly knowledge/learning trumps having the active letters but for certain fields (i.e. government) or clearing resume screens having the letters can still be helpful.