If it's a pen tester you're aiming towards then you probably want to go for the more technical/hands on certs rather than the infosec management ones.
That said a CISSP
is not usually a bad thing to have, the ISEB CISMP is a good starter-ish cert in that kind of area as is the SSCP
(the mini CISSP
is very much seen as an entry level cert in the world of testing, it will probably help with a foot in the door though.
The target certs for testers are the Check Team equiv which are harder to get, you've got the choice of Tigerscheme or CREST which have Check equiv certs if you're not working for a Check company.
The SANS certs are also pretty good, and I believe the Offensive Security stuff is decent as well.
Originally Posted by jk2447
Not as tough as people may think, and certainly don't need to be a master of any languages to get into the field ;) You do need to be a little proficiant with Linux though.
Yes it's a pretty technical role, but there's a lot of people skills involved as well if you want to progress above just a standard tester.
There's all the pre and post engagement stuff to think about which requires a lot of communication with various people, also a fair amount of diplomacy involved
If you are not in an IT role yet then that's your first point of call, ideally you need to have some understanding of how things work in the world of corporate IT.
I was a tester for a while and whist not specifically a tester now am still heavily involved in the area, any questions just fire away.