Cyber Security Certificate Tier List – UPDATED (2023)

00:00

this video might be controversial but my

00:02

goal is to help you understand the cyber

00:04

security industry better so in this

00:06

video I will give you my honest no BS

00:09

rating of cyber security certifications

00:11

in terms of which ones are useful for

00:13

you so you can man a subject but also

00:15

land the job this is from my own Journey

00:17

when I was trying to break into cyber

00:18

security 20 years ago but also from what

00:21

I see in the market both as a hiring

00:23

manager but also as a cyber security

00:25

consultant where I help organizations

00:27

run the cyber security division when I

00:29

was trying to land my first cyber

00:31

security role I thought I had it all

00:32

figured out people gave me the advice

00:34

that I needed to do CompTIA a plus and

00:36

CCNA to build that Foundation before I

00:40

can begin to learn how to do some

00:41

ethical hacking activities but as I was

00:44

going through these certificates I

00:46

noticed that I was getting extremely

00:48

bored learning both the a plus and the

00:50

Cisco CCNA but not only that I noticed

00:52

that the things that I was learning were

00:54

completely irrelevant I didn't know how

00:56

learning The Cisco command line will

00:58

help me out in doing ethical hacking for

01:00

web application servers it just made no

01:02

sense but then things got worse I

01:05

started noticing that some of my friends

01:06

got their first cyber security job

01:08

without even doing any of those

01:10

certificates in fact I've even met fresh

01:12

University graduate who got their first

01:14

cyber security role without having any

01:16

certifications or experience whatsoever

01:18

so I started questioning the part that I

01:21

was on which turned out to be a blessing

01:23

in disguise because it led me to a

01:25

journey of doing so many cyber security

01:27

trainings and certifications which gave

01:30

me exposure to so many cyber security

01:32

certification programs and if this video

01:34

manages to save time and money for one

01:37

person then I consider my goal

01:38

accomplished let's get into it CompTIA

01:40

certificates are extremely popular among

01:43

people who don't work in cyber security

01:45

and among people who are extremely

01:47

Junior and early in their cyber security

01:49

Journey the main advantage of the

01:51

CompTIA certificates is that it's vendor

01:53

neutral which means instead of teaching

01:55

you how to configure Palo Alto firewalls

01:58

they teach you in general what firewalls

01:59

are and what they do but they don't

02:01

teach you how to configure a specific

02:03

vendor firewall which can be useful for

02:06

someone who's new to the field so you

02:07

get to learn the generic concepts of how

02:09

things are supposed to work the other

02:11

big advantage that I personally like

02:13

about CompTIA is the CompTIA Security

02:15

Plus is a beginner introductory

02:17

certificate that will teach you the

02:18

general foundations of what cyber

02:20

security is this was quite revolutionary

02:22

because in the past we didn't have many

02:24

cyber security certifications that will

02:27

introduce you to the field so Security

02:28

Plus was and still is a good

02:30

introduction to cyber security now there

02:32

are many problems with CompTIA

02:34

certificates the biggest disadvantage of

02:36

CompTIA certificates is that the exams

02:38

are multiple choice exams which means

02:40

when people study for these certificates

02:42

they end up memorizing and cramming a

02:44

bunch of Concepts so they can pass the

02:46

exam which is not the best way to learn

02:48

a topic in my opinion we will use this

02:50

popular tiering system so the S tier is

02:52

the super tier and then comes the a b c

02:55

d and then the f is the worst tier in

02:57

the list so the company certificates

02:59

that I will look at is Security Plus I

03:01

think it does a good job introducing

03:03

people to the field of cyber security it

03:05

delivers on the promise that it will

03:07

teach you the foundational concepts of

03:08

cyber security it's not going to make

03:10

you an expert it's not going to make you

03:11

an all knowledgeable hacker man but it's

03:14

definitely a good introduction to cyber

03:15

security then we have the seza plus

03:17

which is the CompTIA cyber security

03:19

analyst certificate I actually really

03:21

like this one because it's a lot harder

03:23

than the Security Plus and it introduces

03:25

you to an extremely useful Concepts that

03:27

you will use if you work as a cyber

03:29

analyst it will teach you about security

03:31

operations incident response

03:33

vulnerability management and even

03:34

reporting unfortunately the same

03:36

disadvantage that apply to all companies

03:38

certificates apply here it's extremely

03:40

theoretical so you will end up

03:42

memorizing and cramming a bunch of

03:44

Concepts to pass a multiple choice exam

03:46

but nonetheless I still think the

03:47

information in there is valuable the

03:49

next one is the cast B plus this is

03:51

meant to be a tier above the sizzle plus

03:53

it's a little bit harder it touches on

03:55

Concepts such as architecture and

03:58

operations again GRC engineering and

04:01

cryptography and then we have the

04:02

CompTIA pen test plus this is the

04:04

penetration testing certificate I

04:06

honestly don't think this certificates

04:07

serve any purpose because trying to

04:09

learn ethical hacking from a theoretical

04:11

multiple choice based exam is like

04:13

channeling to drive a car by reading a

04:14

book yes you can learn all about the

04:16

traffic Rules by reading a book but you

04:18

still have to actually try and drive the

04:20

car to learn driving so in my opinion

04:22

pen Test Plus doesn't serve any purpose

04:24

to put them in our tiering list I will

04:26

put all of the company certificates as

04:28

tier B because they have good

04:30

theoretical information but

04:32

unfortunately they have the practicality

04:34

that we need in cyber security except

04:36

the pen test plus I think it's rated as

04:38

F because in my opinion it doesn't serve

04:40

any purpose it will just waste your time

04:42

and money now before we move on to the

04:44

next section I didn't forget the popular

04:46

CompTIA a plus and network plus and even

04:48

things like CCNA in my opinion these are

04:51

not cyber security certificates these

04:53

are General it certificates and for

04:55

cyber Security Professionals I don't

04:57

think it's a great idea to do them now

04:59

if you've already done them that's great

05:01

but if you haven't done them then there

05:02

are so many options that are cheaper and

05:04

faster that will teach you the same

05:06

Concepts and I talked about all of them

05:07

in this video so please check it out the

05:09

next one is the GX certificates the DX

05:12

certificates have an Associated Sands

05:14

training the sense training institute is

05:16

the most popular cyber security training

05:18

institute in the cyber security industry

05:21

sure your it manager or network admin or

05:24

even your Hotshot Junior cyber analyst

05:26

may not have heard about the Sans

05:28

Institute but those of us who work in

05:30

cyber security are extremely familiar

05:31

with the Sans Institute they are not

05:33

only a training provider but they've

05:35

actually set some industry standards

05:36

that we use in our day-to-day cyber

05:38

security jobs the way it works is you do

05:41

a sense training that is four to six

05:43

days of training depends on the course

05:44

and then you study and pass the

05:46

associated Jac exam the Sans Institute

05:49

has world-class cyber security training

05:51

for a number of reasons they are

05:53

extremely selective on who the

05:54

instructors are so a stand instructor is

05:56

usually someone who have a lot of

05:58

experience in cyber security they are

06:00

actively working in cyber security so

06:02

they are not a full-time instructor and

06:04

they are not an academic so they have

06:06

the hands-on experience and to become a

06:08

sense instructor it's a very very

06:10

demanding process so they maintained

06:12

this high quality of instructors

06:13

throughout their use now compare that to

06:15

your PhD University Professor who have

06:17

never worked a day in their life and

06:19

they're trying to teach you how to

06:20

become a cyber security professional

06:21

there is a huge difference the other

06:23

good Advantage about Sans is the

06:25

material is so high quality it's always

06:27

up to date their courses reflect

06:29

problems that we face today in cyber

06:31

security other great thing about sense

06:33

training is usually most of their

06:35

courses have a practical component that

06:37

you will do in the training the other

06:39

underrated advantage of sense training

06:41

is that they cover every topic Under the

06:43

Sun they've got a training course for

06:45

every topic you can imagine even obscure

06:47

things like they'll have a course

06:49

dedicated to operational technology they

06:51

have courses dedicated to mobile device

06:53

forensics they have courses for cloud

06:55

forensics so whichever topic you want to

06:57

learn chances are there is a sense

06:59

training and you know know that the

07:00

quality is super high and the final

07:02

advantage of sense training is that it's

07:04

well respected within the cyber security

07:05

industry when people see that you've

07:07

done a sense training or a GX

07:09

certification they know that you know

07:10

something that goes beyond memorizing

07:12

and cramming and passing a multiple

07:14

choice exam now the biggest disadvantage

07:16

of sense training is the price the cost

07:18

of the training is about eight thousand

07:20

dollars and the reason behind that is

07:22

the sense training usually Target

07:23

companies so they want your company to

07:25

pay for the trading so the employees can

07:27

attend the training now bonus tip if you

07:29

want to do sales training cheaper go to

07:31

the work study program within sense

07:33

apply there and you might get a chance

07:34

to be an assistant in a sense training

07:36

program or you get to do the training

07:38

for much much cheaper I've done a few of

07:40

those myself I highly recommend it now

07:42

there are so many Jax certificates so

07:44

it's nearly impossible to rate all of

07:46

them but if I was to group them all

07:48

together and rate GI can even the sense

07:49

training institute all at the same time

07:51

they will definitely in the istio anyone

07:54

who works in the industry knows that and

07:55

they've maintained their quality

07:57

throughout the years the next one is

07:58

isaka isaka certificates focuses on the

08:01

area of governance risk and compliance

08:03

or GRC the main advantage of isaka is

08:05

that kind of the only GRC certificate

08:08

providers so if you want to do an I.T

08:10

audit certificate then isaka is pretty

08:13

much all you have at the moment the

08:14

other thing that I like about iseka is

08:16

they earn a lot of free events for the

08:18

community so if you go to Google and you

08:20

type isaka chapter in your own City then

08:22

chances are you'll find a really nice

08:24

Meetup that you can attend and you can

08:25

network with other cyber Security

08:27

Professionals I highly recommend

08:28

attending those now unfortunately there

08:30

are many disadvantages with isaka

08:32

certificates the first one is that to do

08:34

isaka certificates you need five years

08:36

of experience and I'm talking here about

08:38

the popular one Caesar series can see

08:40

ISM in my opinion this experience

08:43

requirement is not warranted the topics

08:45

in season even C risk and cism to a

08:48

certain extent are not exactly Advanced

08:50

so any Junior IT Auditor should be able

08:52

to do and pass this at least the Caesar

08:55

certificate so to me they created an

08:57

unnecessary hurdle but the main biggest

08:59

disadvantage that I personally don't

09:01

like about isaka is that the training

09:03

itself doesn't teach you anything so

09:05

think of Isaac as after you get GRC

09:08

experience then you do isaka

09:10

certificates to kind of validate your

09:12

experience but if you do the isaka

09:14

certificate they're not going to teach

09:15

you how to do GRC which is a huge

09:17

problem in my opinion and because of all

09:20

of that my tearing is C I still think

09:22

they hold some value but unfortunately

09:24

they don't teach you anything the next

09:26

ones are ethical hacking certificates

09:28

those are my absolute favorite

09:30

certificates I wish that the rest of the

09:32

cyber security domains have good

09:34

training materials similar to ethical

09:35

hacking the most popular ethical hacking

09:37

certificate is the oscp and it's fully

09:40

practical and it's popular for a reason

09:42

because it will test that you can

09:43

actually perform ethical hacking as

09:45

opposed to testing you on how you're

09:47

gonna pass a bunch of multiple choice

09:48

exams but fortunately we have other

09:50

ethical hacking certificates so we have

09:52

the ejpt and the pjpt both are

09:56

entry-level ethical hacking certificates

09:58

that are meant to introduce you to the

10:00

field of ethical hacking using fully

10:02

practical training and practical exams

10:04

which I'm a huge fan of even if you

10:06

don't want to be an ethical hacker in my

10:08

opinion doing these certificates is

10:09

extremely helpful for you as a cyber

10:11

security professional so if I was to

10:13

tier the ejpt and the pjpt they are

10:16

definitely tra now we talked about oscp

10:18

but there is ecppt and there is tntp all

10:22

are extremely valuable practical ethical

10:24

hacking certificates in my opinion they

10:26

are tier s because if you do them you

10:28

will learn so so much but doing the exam

10:31

you will also prove that you have the

10:33

skill of ethical hacking I personally

10:35

know so many cyber security

10:36

professionals who started studying for

10:38

the oscp but they never managed to

10:40

finish it because it's just hard and

10:42

finishing it also communicate to me that

10:44

you are passionate about cyber security

10:45

as a hiring manager I see so many

10:47

candidates who tell me I'm very

10:49

passionate about cyber security but to

10:51

me this is meaningless instead of

10:52

telling me you're passionate about cyber

10:54

security show me what work you've done

10:56

in the field show me the difficult

10:57

projects that you've done because this

10:59

will prove that you're passionate it's

11:01

really really hard to pass the oscp

11:03

without being passionate about cyber

11:04

security now there is easy Council and

11:06

the certified ethical hacker certificate

11:08

this is a multiple choice exam based

11:10

certificate in my opinion it's not the

11:12

best way to learn ethical hacking it's

11:14

extremely similar to the pen Test Plus

11:16

so in my opinion I would personally rate

11:18

it as F because doing it will not make

11:20

you an ethical hacker so it doesn't

11:21

deliver on the promise and for these

11:23

Reasons I'm tearing it as if the next

11:25

one is the ifc2 certificates the cissp

11:28

is definitely the most popular

11:30

certificate for people who have no idea

11:32

how cyber security works so for example

11:34

I'll get network Engineers who come and

11:36

ask me or should I do cisp to become a

11:39

cyber security professional or I will

11:40

meet someone who is a university student

11:42

who would like to work in cyber security

11:44

and the first thing they ask me is oh

11:45

should I do cissp the truth is among

11:48

people who actually work in cyber

11:49

security we don't care about cissp and

11:52

there are so many reasons for this the

11:54

first thing is the cissp is actually

11:56

intended to make you a cyber security

11:57

manager this is the goal of the system

11:59

ticket so it's meant to be a mile wide

12:01

and an inch deep so it touches on so

12:03

many domains but it doesn't go deep in

12:05

any of those domains so an isc2 came up

12:08

with this certificates they thought this

12:09

is what cyber security managers need now

12:11

the other reason that we don't really

12:13

care about cissp is because the vast

12:15

majority of server security managers do

12:17

not have CI SSP and they don't even care

12:19

about it because to be a really good

12:21

cyber security manager you need to have

12:23

a lot of depth in so many topics but you

12:25

also need management skills which the

12:27

CIS SP definitely don't teach you other

12:29

huge disadvantage of cissp is that if

12:32

you can't see issp I know for sure that

12:35

you've just crammed a bunch of Concepts

12:36

it's all about memorizing the whole heap

12:38

of junk in my opinion trust me

12:40

memorizing the types of fire alarms have

12:42

nothing to do with cyber security no one

12:44

cares now is the CIS SP all that bad no

12:48

there are few things going on for the

12:49

cissp they actually have a group of

12:51

cyber security professionals who

12:53

contribute to the exams so the multiple

12:55

choice questions that you get in the

12:56

exam have actually come from some really

12:58

good cyber security profession so they

13:00

try to emulate real world as much as

13:02

possible in a multiple choice exam in

13:04

fact one of my close friends sit in that

13:06

committee the other good slash bad thing

13:08

about the cisp is that people who don't

13:10

work in cyber security seem to somehow

13:12

know about it so when they do a job

13:14

search cyber security they see the ciss

13:16

be thrown here and therefore jobs that

13:18

Frankly Speaking have nothing to do with

13:20

cicssp I have no idea why a security

13:22

analyst would ever need a cissp

13:24

nonetheless people still copy paste the

13:26

CI SSP and they put it there more often

13:29

than not this is just a wish list so

13:31

they'll put the issb and they'll put a

13:33

bunch of certificates that doesn't mean

13:35

they absolutely want you to have it it

13:36

just means if you have it yep nice to

13:38

have whatever what you really need is

13:40

the skill of being a cyber security

13:41

professional the other advantage of cisp

13:44

is that it's a little bit harder than

13:45

Security Plus it's not a lot harder I

13:47

personally know people who passed it in

13:49

two weeks those are professionals who

13:51

work in the field who have the

13:52

experience so all they did was they just

13:53

read the book quickly and went and took

13:55

the exam so yes it is harder than

13:57

Security Plus but it's not that hard in

13:59

fact it's a lot easier than something

14:01

like the oscp so don't be fooled by

14:03

shiny objects just because I see issb

14:06

show up on a job search doesn't mean

14:08

it's as valuable as some beginners on

14:10

the Internet seem to think in the real

14:11

world no one cares so my personal rating

14:14

of it is B and that's mainly from what I

14:17

see in the industry most people who have

14:19

CIS SP usually don't have that much

14:21

experience I'm aware that the CI SSP

14:23

asks you for five years of experience

14:25

but usually what happens is a helpless

14:27

experience for example can qualify for

14:29

you to meet that experience requirement

14:31

even if your experience of help desk had

14:33

nothing to do with the security domains

14:35

it's it's good it's a level above the

14:36

Security Plus but I wouldn't exactly

14:38

call it an advanced certificate there

14:40

are also two popular certificates from

14:42

isc2 which is the sscp that was meant to

14:45

be a stepping stone for the cisp in my

14:47

opinion it absolutely serves no purpose

14:49

so I would rate it as F but then there

14:52

is a new one called certified cyber

14:54

security this is aimed at beginners who

14:56

have no cyber security experience or

14:58

skills in my opinion this is useful

15:00

because it introduces people to the

15:01

field of cyber security although I

15:03

personally think it's a little bit

15:05

watered down so I would rate it as C

15:07

just because there are other alternative

15:09

beginner cyber security certificates

15:11

that will teach you a little bit more

15:12

next up is cyber security analyst

15:14

certificates from vendors like Google

15:16

IBM Microsoft Splunk and Cisco these are

15:19

certificates from Big vendors like

15:20

Google and Microsoft they are aimed at

15:22

people who have no I.T experience no

15:25

technical knowledge and no degree and

15:26

they teach you the basics of cyber

15:28

security this is fantastic news because

15:30

even as far as two years ago we did not

15:32

have anything like this in the market so

15:34

kudos for these companies for creating a

15:36

good quality training that's aimed to

15:38

get more people to work in cyber

15:40

security now you may be wondering which

15:42

one is better the Google cyber security

15:43

certificate or the IBM or Microsoft or

15:46

Splunk or Cisco in my opinion I wouldn't

15:48

be splitting hairs on which one is

15:50

better I've explored all of them I think

15:52

they're all pretty good there are minor

15:54

differences and I will tier them a

15:55

little bit different but in my opinion

15:57

you can't go wrong with any of them and

15:58

they're all quite cheap to be honest so

16:01

if you do one or two or even all of them

16:02

it's not going to take you a lot of time

16:04

but it will also not cost you a lot of

16:06

money now some of the advantages of

16:08

these certificates is that a few of them

16:10

come with Hands-On Labs like the Google

16:11

certificate and even the IBM and

16:13

Microsoft certificates they definitely

16:15

have Hands-On lab where you get to

16:16

practice what you learn which is a huge

16:18

thing especially for someone who's

16:20

completely new to it or cyber security

16:22

it gives you a chance to practice but it

16:24

also improves your confidence and it

16:26

helps you retain the information you

16:27

learned so you're not just cramming a

16:29

bunch of Concepts to pass a multiple

16:31

choice exam now if I look at the

16:32

differences between them I think the

16:34

Google is a great option because it

16:36

teaches you MySQL Linux and python which

16:39

are extremely popular tools that you

16:40

will use as a cyber security

16:42

professional the Microsoft certificates

16:44

it teaches you a little bit about Office

16:45

365 and Microsoft Azure Cloud platforms

16:48

which are extremely useful the IBM

16:50

certificate will show you how to use

16:52

things like GitHub and snake and the IBM

16:54

x4s which are popular tools in the

16:56

industry then we have the Splunk

16:58

certificate I think is the odd one out

17:00

because this certificate will not

17:01

introduce you to cyber security as a

17:03

field but more so it will introduce you

17:05

into how to use Splunk as a tool but

17:07

Splunk is an extremely popular tool so

17:10

it's definitely useful and then we have

17:11

the Cisco certified support technician

17:13

again it gives you an introduction to

17:15

cyber security as a field which is

17:17

extremely useful so in my opinion if I

17:19

was to tier these certificates they

17:21

definitely deliver on the promise that

17:22

they will introduce you to cyber

17:24

security as a field so to me that's

17:26

definitely a tier a and this goes for

17:27

the Google certificate IBM certificate

17:30

the Microsoft certificate and the Cisco

17:32

certificate Splunk unfortunately it does

17:34

not really introduce you to cyber

17:35

security it also introduces you to

17:37

Splunk as a tool so to me that's

17:39

definitely a tier C yes it's useful but

17:42

it doesn't deliver on the promise that's

17:44

an introduction to cyber security next

17:46

up is cloud certificates this is

17:48

definitely a hot area in the market

17:49

there is a huge demand for cyber

17:51

security professionals who understand

17:53

and know how to use that cloud the three

17:55

biggest cloud providers are Amazon AWS

17:57

Microsoft Azure and the Google Cloud

17:59

platform Amazon AWS is still the market

18:02

leader in Cloud so if you work in cyber

18:05

security or even if you work in it

18:06

chances are you will run into Amazon AWS

18:09

they are still by far the most widely

18:11

used and adopted Cloud platform in fact

18:13

as a consultant every time I go to help

18:15

a company with their cyber security

18:16

Journey they always complain about how

18:18

they have a huge Amazon AWS setup they

18:21

don't have many people who understand

18:22

how to secure the AWS Cloud so it's an

18:25

extremely useful skill so to explore

18:27

Cloud security certificates we have

18:29

vendor certificates so certificates from

18:31

Amazon Microsoft and Google we also have

18:33

vendor neutral certificates as well so

18:35

starting with the most popular and most

18:37

useful one in my opinion which is the

18:39

Amazon AWS security specialty you're

18:41

meant to do that after you do something

18:43

like the Amazon AWS Cloud practitioner

18:45

and the Amazon AWS architect and then

18:48

you can do the AWS security specialty

18:50

it's extremely useful the information

18:51

and knowledge in there will definitely

18:53

help you land the role securing the

18:55

Amazon AWS Cloud there is an equivalent

18:57

to this certificate and from Microsoft

18:59

soft which is the Microsoft Azure Cloud

19:01

engineer associate again extremely

19:03

useful yes in the market there is more

19:05

AWS than Azure but Azure is still widely

19:07

used chances are you will run into

19:09

companies earning at least something

19:10

like Office 365 and maybe SharePoint so

19:13

it's really useful to know about Azure

19:14

security Technologies and less known one

19:16

is from Google which is the Google Cloud

19:18

security engineer Google has a much

19:20

smaller market share however doing it is

19:22

still useful because believe it or not

19:24

all the cloud platforms are extremely

19:26

similar so once you learn and get good

19:28

at one of the cloud platforms the same

19:30

skills are transferable to other Cloud

19:32

platforms you will just find some

19:33

differences in the names of the tools

19:35

that's all so if I was to tear them in

19:37

my opinion both the AWS and the

19:39

Microsoft Azure certificates both are

19:41

too old because the skills are

19:42

definitely highly sought after the

19:44

Google Cloud security engineer I would

19:46

teach it as serious because it's not as

19:48

popular and you're less likely to be

19:49

dealing with Google Cloud security

19:51

issues at least in the present moment

19:53

now looking at vendor neutral Cloud

19:55

security certificate from ist2 we have

19:58

the ccsp this is meant to teach you

20:00

General Cloud security Concepts so the

20:02

claim that this certificate will enable

20:04

you to become a cloud security

20:05

professional unfortunately I haven't

20:07

seen this happen in the real world no

20:09

one will hire you just because you have

20:11

the ccsp as hiring manager we're looking

20:13

for someone who knows how to configure

20:15

security groups within Amazon AWS or how

20:18

to configure identity and access

20:19

management in the cloud we don't want

20:21

someone who knows generic concept about

20:23

how Cloud security should be so in my

20:25

opinion this certificate doesn't really

20:27

deliver on the promise of making you a

20:29

cloud security professional the same

20:31

thing goes for the cloud Alliance ccsk

20:33

again another theoretical certificate

20:35

that claims to make you a cloud security

20:37

professional by teaching you a bunch of

20:39

Concepts now the cloud security Alliance

20:41

have actually used for checklists that

20:42

I've seen in the industry where people

20:44

use the CSK checklist on how to secure

20:46

clouds this can be useful but just

20:49

because these spreadsheets and these

20:50

checklists are around doesn't mean that

20:52

the certificate itself is useful that

20:54

security is one of those extremely

20:56

practical things so I'd rather you know

20:58

how to configure security ability in

20:59

Office 365 as opposed to memorizing

21:02

concepts of how the cloud need to be

21:04

secured so if I was to tier them both

21:06

the ccsp and the ccsk are trf because I

21:09

would never recommend anyone doing them

21:10

now a common question I constantly get

21:13

asked is is the Google cyber certificate

21:15

enough for me to land the job as the

21:17

Security Plus enough for me to land the

21:18

job is the cissp enough for me to land

21:21

the job is this training sufficient is

21:22

this boot camp sufficient and to be

21:24

honest the answer is always it depends

21:26

on how much experience you have but

21:28

assuming you have zero experience and

21:30

zero knowledge and all you did was one

21:31

certificate or two certificates the

21:33

answer is maybe you might get lucky and

21:35

get hired with one certificate in fact

21:37

I've seen people get hired with zero

21:39

certificates it definitely happened but

21:41

chances are you will probably need more

21:43

the certificates are meant to be used as

21:45

a structured way for you to learn a

21:47

subject but especially those beginner

21:49

level certificates are meant to be the

21:50

beginning of your journey they are meant

21:52

to introduce you to the field and to get

21:54

you started in your Learning Journey but

21:56

what ends up happening is after you

21:58

finish one or two two certificates

21:59

you'll find that you have to memorize

22:01

and cram a bunch of Concepts and maybe

22:03

you start to forget this concept but

22:05

also you may not have so much confidence

22:07

in applying to jobs or in landing your

22:09

first job so to solve this I curated a

22:12

list of practical projects that you can

22:13

do progressively so you can go from one

22:15

project to the other you start from

22:17

beginner level projects all the way to

22:19

intermediate projects and then you do

22:20

practical intermediate cyber security

22:22

certificates I created this roadmap

22:24

specifically for people who've done some

22:26

cyber security certificates and are

22:28

looking for this next step on what to do

22:30

all of this is detailed in this video

22:32

and I'll see you then