CISSP - should you get it?

CISSP^® certification is a globally recognized standard of achievement that confirms an individual's knowledge in the field of information security. CISSPs are information assurance professionals who define the architecture, design, management and/or controls that assure the security of business environments. It was the first certification in the field of information security to meet the stringent requirements of ISO/IEC Standard 17024.

CISSPs often hold job functions including:

security consultant security manager IT director/manager security auditor security architect

security analyst security systems engineer chief information securityofficer director of security network architect

 

 

The above snippet it Courtesy https://www.isc2.org/cissp/default.aspx

 

Now, to get it or not to get it is the question. And if you get it, is it worth it or not? While there are many web references for and against it, Presenter Timmay delivered a provocative session entitled "Why You Should Not Get a CISSP". His slide presentation (PDF) packs a whallop.  Despite a strong opinion against it, if you decide go for it, here's a good Guide to obtaining the certification and maintaining it.

 

In my opinion, CISSP would be a good starting point to get an overview of the various facets of security in an organisation including physical security. If you approach it from the point of view of gaining knowledge, salary rise or career growth would become secondary.