Kirkian Computing

Tag: exam

  • SSCP

    In September 2018, I took the (ISC)2 SSCP exam (Systems Security Certified Practitioner). This was a bit different from any of the previous exams I’ve taken: normally I would sit the exam(s), then get a qualification if I passed. In this case, the exam is only one component: you also need to be endorsed by an (ISC)2 member who will vouch for you having suitable experience.

    The name (ISC)2 is (or was) an abbreviation for International Information System Security Certification Consortium. If you think of a mathematical formula, (ISC)2 = IISSCC. They also offer the CISSP (Certified Information Systems Security Professional), which is aimed at higher level strategic roles and probably better known; that’s the type of certification that a CISO (Chief Information Security Officer) might have. By contrast, the SSCP is aimed at tactical (hands on) roles, and that interests me more than the management side of things.

    The SSCP and CISSP both have a CBK (Common Body of Knowledge), spread across multiple domains (topics). Passing the SSCP or CISSP exam will qualify you to become an Associate of (ISC)2. However, to actually get the SSCP certification you need to have 1 year’s experience in at least 1 of the 7 domains. For the CISSP you need to have 5 years’ experience in at least 2 of the 8 domains.

    So, if you’re trying to move from a general role (e.g. service desk) into a security role, this implies that you wouldn’t be eligible for either. However, if you have a relevant degree in a cybersecurity program then the ISC2 will accept that in lieu of a year’s experience for the SSCP.

    In 2018, I was very enthusiastic about getting a more prestigious certification, and I thought that this would really open doors for me. However, reviewing it in 2020, I don’t think it’s really helped my career at all, and I don’t recall seeing any job adverts that mentioned the SSCP. Prices have also risen, so I don’t know whether I’ll maintain it long-term, and right now I wouldn’t recommend it to anyone else; my advice is to do the Security+ instead.

    (more…)

  • Security+ (SY0-401)

    In November 2016, I took CompTIA’s Security+ exam.
    NB I did the SY0-401 syllabus; CompTIA replaced it with SY0-501 in October 2017, so some of the info in this blog post will now be a bit out of date.

    In brief, I think that this is a worthwhile certification. It emphasises breadth rather than depth, so if you want to specialise in IT security then it’s really just a starting point. However, if you’re doing general IT work then it covers a lot of topics that it’s useful for you to know. Similarly, from an employer’s point of view, someone with this certification should have a decent overview of security concepts.

    (more…)

  • Assessing ability

    I’ve recently had a few conversations with recruitment agencies, where they’ve asked me to rate my IT skills from 1-5. However, I’m reluctant to answer, because I think the concept is flawed.

    (more…)

  • ITIL Foundation (2011)

    I recently earned the ITIL Foundation Certificate in IT Service Management, after about a week of study. I’m currently job hunting, and I’ve noticed that a lot of adverts list this as essential. It won’t get you a job on its own, but not having the qualification might exclude you from certain jobs, if the employer treats this as a deal breaker.

    My exam was based on version 3 of the syllabus (updated in 2011), but Axelos have announced that they will release version 4 next year. Quoting from that page:

    “The first release of ITIL 4 will be the Foundation level, currently scheduled to be launched in Q1 2019, with the following levels due for release in H2 2019.
    [..]
    If a candidate has taken ITIL v3 Foundation, then the recommended approach is to take ITIL 4 Foundation in order to be able to transition to the new scheme. There is a large amount of new material in ITIL 4 Foundation therefore a new single exam is required to assess end-learner’s knowledge of the new ITIL 4 Foundation guidance.”

    Based on that, if you haven’t started studying for ITIL yet then I recommend waiting a few months. However, circumstances forced my hand. Based on that, I looked for training that’s specifically focussed on this exam, rather than going into more depth.

    (more…)

  • Network+

    I recently sat CompTIA’s Network+ exam. I’ve been meaning to do this for a while, and as I mentioned in 2012, passing this exam would give me 2 new qualifications: A+ ce and Network+ ce. I did pass the exam, but the CE side of it was sufficiently complex to warrant a separate blog post.

    (more…)

  • CWTS

    Last month, I took the Certified Wireless Technology Specialist (CWTS) exam. This is issued by CWNP, who are similar to CompTIA, i.e. it’s a vendor-neutral exam rather than being based around specific technology (e.g. Cisco access points).

    The CWNP website says: “The CWTS certification validates the knowledge of enterprise WLAN sales and support professionals who must be familiar and confident with the terminology and basic functionality of enterprise 802.11 wireless networks.” Similarly, when I booked the exam on the Pearson Vue website, they list it as: “PW0-071: Certified Wireless Technology Specialist – Sales (CWTS)”. This exam isn’t a pre-requisite for any of the higher qualifications, so you could start with the CWNA instead (“the foundation level enterprise Wi-Fi certification for the CWNP Program”). As I understand it, the main difference between the CWTS and the CWNA is “what vs. how”, although I don’t really know enough about the CWNA yet to comment in detail.

    Having said that, I learnt a lot by preparing for this exam, and I think there is quite a bit of technical detail in here. For instance, here’s section 3.6 of the exam objectives:

    Understand and apply basic RF antenna concepts

    • Passive Gain
    • Beamwidth
    • Simple diversity
    • Polarization

    I think there are a lot of IT professionals who would struggle to define all of those terms. Similarly, here’s one of the sample questions from the start of the textbook:

    What can contribute to voltage standing wave ratio (VSWR) in an IEEE 802.11g wireless LAN circuit?

    1. Output power of the access point
    2. Impedance mismatch
    3. Gain of an antenna
    4. Attenuation value of cable

    So, this is a bit more involved than just saying “Buy a wireless router and plug it in at home”!

    (more…)

  • CompTIA exams

    Back in 2007, I passed the CompTIA A+ exams. Since then, there have been a few changes to the way these exams work. Unfortunately, CompTIA haven’t done a very good job of explaining it all; it makes volume licensing seem clear and simple by comparison!

    In brief, if you currently have the A+, Network+, or Security+ qualification, you should enroll in the CE program. The deadline for enrollment is 31st December, so there’s not much time left. (If this applies to anyone you know, please pass this info on to them.)

    (more…)

  • Microsoft exams

    Last August, I did a beta exam for Microsoft. I didn’t pay for it, but I didn’t get a score either; the idea was just to test out their new software for doing simulations in the exam (rather than multiple choice questions). As a “thank you”, Microsoft then sent me three vouchers, each one corresponding to a free exam. These expire at the end of June, so I’ve finally had to stop procrastinating and start studying.

    Today I did two exams: 70-236 (MCTS: Configuring Exchange Server 2007) and 70-431 (MCTS: SQL Server 2005 – Implementation and Maintenance). According to the booking website, the Exchange exam lasts 4½ hours, and the SQL exam lasts 4 hours, so this looked like quite a long day! Fortunately, I didn’t need all the time that was allocated, so I ended both exams early, and I was at the test centre for about 3 hours altogether.

    (more…)

  • 70-621

    On Monday morning I took the Vista upgrade exam (70-621). I passed it with a healthy margin (pass mark was 700/900 and I scored 820/900), so I’m happy with that, and it gives me two extra certifications:

    • Microsoft Certified Technology Specialist (Microsoft Windows Vista: Configuration)
    • Microsoft Certified IT Professional (Enterprise Support Technician)
    (more…)

  • A+

    I recently decided to sit the A+ exams. That’s partly because it’s always good to boost my CV with extra qualifications, and partly because I wanted to review that qualification: if I was recruiting, would this be valuable for someone else to have?

    (more…)