Cybersecurity Certificate Tier List (2024)
Summary
TLDRThis video ranks ethical hacking cybersecurity certifications from S-tier to F-tier, focusing on the specialized field of penetration testing, or 'red teaming'. The ranking is based on the Mad Hat metrics, which include reputation, difficulty, HR clout, and price. The script humorously critiques various certifications, highlighting the importance of practical skills over mere titles and emphasizing that the field is highly technical and demanding, not for the faint-hearted.
Takeaways
- 📚 The video ranks ethical hacking and cybersecurity certifications from S-tier to F-tier, focusing on specialization for roles like penetration testing and red teaming.
- 🔍 The speaker emphasizes the difference between penetration testing and ethical hacking, noting that all penetration testing is ethical hacking, but not all ethical hacking is penetration testing.
- 👨🏫 The script discusses the importance of not just obtaining certifications, but also the practical knowledge gained from the courses and labs associated with them.
- 💼 The video warns about the potential confusion between job titles and responsibilities, advising viewers to check job descriptions carefully to avoid being misled into unrelated positions.
- 🔎 The rankings are based on an analysis of 100 job descriptions and 100 random job listings for penetration testers, ethical hackers, and red teamers.
- 💰 The 'Mad Hat metrics' are introduced as the criteria for ranking, including reputation, difficulty, HR clout, and price.
- 📉 CompTIA certifications, while basic and broadly recognized, are considered too elementary for specialized ethical hacking roles and may not significantly enhance a resume in this niche.
- 🆕 TCM (The Cyber Mentor) certifications are highlighted as relatively new and positively received in the cybersecurity community, despite some pricing concerns.
- 📈 The script points out that the Offensive Security Certified Professional (OSCP) is the most recognized and sought-after certification in the field, despite its cost and difficulty.
- 🚫 The Certified Ethical Hacker (CEH) certification is criticized for its lack of practicality and is ranked low due to its perceived lack of value in the ethical hacking community.
- 🛑 The video concludes with advice on the importance of continuous learning and practical experience beyond certifications for those pursuing a career in ethical hacking.
Q & A
What is the main focus of the video?
-The video focuses on ranking various ethical hacking and cybersecurity certifications from S-tier to F-tier, specifically for roles in penetration testing, red teaming, and ethical hacking.
Why is specialization important for getting into ethical hacking?
-Specialization is important because ethical hacking requires substantial technical knowledge and skills that go beyond general cybersecurity principles and concepts.
What is the difference between penetration testing and ethical hacking according to the video?
-All penetration testing is considered ethical hacking, but not all ethical hacking is penetration testing. Ethical hacking is a broader term that includes red teaming, while penetration testing is a specific type of ethical hacking.
Why might someone be confused about job roles in ethical hacking?
-Confusion can arise due to the use of various titles such as penetration tester, ethical hacker, and red teamer, which are often used interchangeably but may have different job responsibilities.
What does the video suggest about the CompTIA trifecta and Security Plus certifications in the context of ethical hacking?
-The video suggests that while CompTIA trifecta and Security Plus are foundational, they are too basic for ethical hacking roles and may not be visible on resumes when applying for such jobs.
What is the general consensus on the Pentest+ certification from CompTIA according to the video?
-The Pentest+ certification is considered not very useful for red teaming, as it is a high-level multiple-choice exam without much hands-on aspect, making it less practical for the job.
What are the key differences between TCM Security's PJPT and PNPT certifications?
-PJPT (Practical Junior Penetration Tester) is an entry-level certification, while PNPT (Practical Network Penetration Tester) is a more advanced certification for those with more experience in the field.
Why does the video suggest that the eLearn Security certificates may not be the best choice currently?
-The video suggests that eLearn Security certificates have become outdated and less practical since the acquisition by INE, with exams not being updated regularly and a lack of continued educational units.
What is the main issue with the SANS Institute's red teaming certificates according to the video?
-The main issue is the high cost of the SANS Institute's red teaming certificates, which can be over $10,000 when including training and materials, and the exams being largely multiple choice with limited hands-on components.
What does the video suggest about the value of the Offensive Security Certified Professional (OSCP) certification?
-The video suggests that while the OSCP is a well-recognized and respected certification, it may not be necessary to skip the basics and go directly for the more advanced certifications like the OSCP.
Outlines
此内容仅限付费用户访问。 请升级后访问。
立即升级Mindmap
此内容仅限付费用户访问。 请升级后访问。
立即升级Keywords
此内容仅限付费用户访问。 请升级后访问。
立即升级Highlights
此内容仅限付费用户访问。 请升级后访问。
立即升级Transcripts
此内容仅限付费用户访问。 请升级后访问。
立即升级浏览更多相关视频
5.0 / 5 (0 votes)