Ask the Expert

Necessity of becoming a computer engineer to succeed as an infosec professional

I am a CISA, and I believe I can clear CISSP. I have never been a security professional, as I have been a general manager in a small company. However, I have strugled enough with my systems and therefore know about Windows settings and configurations. I have also fixed my own systems after virus infections, using guidance available at I am also a reseller for Web security certificates. I have overview experience of programming and database, having done some strong programming using C under DOS and followed that by learning Java, HTML etc. However, even after all this, somehow I feel all my systems are vulnerable to hacking and I can do very little about it. I think computers have become too complicated to be managed with any degree of guarantee. My question to you is whether it is possible for me to become an infosec professional without first becoming a computer engineer?

    Requires Free Membership to View

It is not necessary to become a computer engineer to effectively maintain security in your current circumstances (and indeed, in other circumstances as well). To that end, make use of the various post-installation checklists and lockdown information available on these Microsoft Web pages:

Likewise, I would recommend reading heavily in this area and perhaps pursuing a more operational, hands-on certification like the SANS GIAC program rather than the CISSP if you really want to become a security practitioner. CISSP takes more of a theoretical, architectural and organizational view on security rather than a "to fix problem x, apply solution y" approach. Other certs will provide this latter perspective and are probably therefore more germane to your stated goals and needs.

For more information on this topic, visit these other resources:
Careers and Certification Tip: The vendor-neutral security certification landscape
Ask the Expert: First certification for breaking into security
Ask the Expert: Prerequisite for GIAC certified Windows administrator

This was first published in October 2002

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: