Cyber Security Certifications: Insights from Daniel Lowry

Jul 23, 2024

Cyber Security Certifications: Insights from Daniel Lowry

Speaker Information

  • Speaker: Daniel Lowry, an edutainer at ITProTV.
  • Host: David Bombal.
  • Specialty: Cyber Security.

Introduction

  • Daniel integrates engaging and interactive methods of teaching cyber security.
  • Goal: Provide fun and effective IT training to help individuals gain necessary skills.

Importance of Certifications

  • Certifications are crucial for breaking into cyber security and advancing in the field.
  • Common certifications include Security+, CEH, PenTest+, and the eLearnSecurity's EJPT.

Recommended Certifications Path

  1. Starting Point:
    • EJPT: Considered the best entry-level certification for offensive security (PenTesting).
    • Reason: Combines aspects of Security+ and CEH without the filler.
  2. Gatekeeper:
    • CEH: Provides broad foundational knowledge; good for security practitioners.
    • Advantage: Strong industry recognition, useful for HR screening.
  3. Advanced:
    • OSCP: Practical, industry recognized, tough but valuable for deeper skills.
  4. Additional Certifications:
    • Security+: Good general certification, 8570 compliant.
    • PenTest+: Strong option, practical exam, complementary to others.

EJPT vs. CEH

  • EJPT: Focused, practical, enjoyable exam.
  • CEH: Wide knowledge base, less practical initially but evolving with CEH Practical.
  • Practical Training: CEH has started offering a practical exam to match market demands.

The Value of Certifications

  • Certification Benefits:
    • Industry recognition.
    • Knowledge foundation.
    • Enhances job prospects especially in HR screenings.
  • Training Value:
    • Practical experience through cert training like OSCP, EJPT, and CEH Practical.
    • Often reduces theory and increases hands-on experience.

Practical Learning Recommendations

  • Supplemental Platforms: Hack The Box, Try Hack Me, VulnHub.
  • Balance: Engage in both certifications and practical, hands-on challenges.
  • Continuous Learning: Certifications should be part of ongoing education.

Philosophy on Red Teaming

  • Purpose: Help the blue team enhance their defense capabilities.
  • Focus: Identifying and fixing weaknesses, ultimately to support security enhancement.

Courses and Hands-On Learning at ITProTV

  • Daniel's courses emphasize practical application of theoretical knowledge.
  • CEH, PenTest+: Courses go beyond theory, applying concepts in practical scenarios.

Final Takeaways

  • Certifications Path:
    1. EJPT for starting a PenTesting career.
    2. CEH for broad, foundational knowledge and HR gatekeeping.
    3. OSCP for deeper, practical skills.
  • Integration: Certification knowledge should be reinforced through practical experience and continuous learning via interactive platforms.