1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Security Architect

Discussion in 'Training & Development' started by westernkings, Dec 1, 2008.

  1. westernkings

    westernkings Gigabyte Poster

    1,432
    60
    107
    Hey guys,

    Do we have any security architects here that can share their stories with me ? How they got to where they are ? certifications ? progression etc.

    I think security Architecture is a part of IT i am interested in a lot at the moment and a possible career choice for the future to aim to.

    Where to start ? and so forth though.
     
    Certifications: MCITP:VA, MCITP:EA, MCDST, MCTS, MCITP:EST7, MCITP:SA, PRINCE2, ITILv3
  2. supernova

    supernova Gigabyte Poster

    1,422
    21
    80
    Are you in IT?

    Because that sort of position its start off at the bottom work your way up, get lots of experiance.
    Its not going to be a position where you get a few certs and walk straight into.
     
    Certifications: Loads
    WIP: Lots
  3. GiddyG

    GiddyG Terabyte Poster Gold Member

    2,471
    42
    140
    Andi,

    I think WK is looking more to the future rather than trying to jump into such a position now...
     
  4. JonnyMX

    JonnyMX Petabyte Poster

    5,239
    211
    236
    When you say Architect, are you referring to someone who designs security as a job - ar are you referring to the Microsoft Certified Architect program?
     
    Certifications: MCT, MCTS, i-Net+, CIW CI, Prince2, MSP, MCSD
  5. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    19,136
    462
    374
    The most I've done is to recommend, purchase, install, and administer security solutions (firewalls, Web monitoring/filtering apps, VPN solutions, etc.). That said, my job consisted of much more than security architecture, so I don't really think of myself as a "Security Architect".
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  6. westernkings

    westernkings Gigabyte Poster

    1,432
    60
    107
    Yea, I'm currently in IT at the first rung of the ladder although if i'm honest I do, do a lot of second line stuff (with it being a small company) and I do have the chance to learn a lot, anything I ask about my 2 colleagues have the [patience to explain which is good.

    Someone that designs security as a job, network security etc, I don't really know the ins and outs of it.
     
    Certifications: MCITP:VA, MCITP:EA, MCDST, MCTS, MCITP:EST7, MCITP:SA, PRINCE2, ITILv3
  7. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    19,136
    462
    374
    Really, you just take what you've read and learned and experienced and mash it all together in your brain... then when you see a network that can use extra security measures, you recommend it and implement it. That's why real-world experience is absolutely essential for jobs like that... one can't just read the theory behind security concepts and expect to be able to immediately implement security hardware (and procedures!) in an existing production network. Having seen it before *really* helps... both what works AND what doesn't.

    So... while you're in your current position, take note of what they implement, how they implement it, why they implemented what they did, and what difficulties they encountered. And again, don't just focus on the bits and bytes and bolts... determine the security policies, procedures, and documentation that is in place... those can be just as important as the gear and the configuration.
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  8. westernkings

    westernkings Gigabyte Poster

    1,432
    60
    107
    What sort of certifications do employers expect one to have usually ? whats the industry standard ?
     
    Certifications: MCITP:VA, MCITP:EA, MCDST, MCTS, MCITP:EST7, MCITP:SA, PRINCE2, ITILv3
  9. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    19,136
    462
    374
    For security? Experience, experience, experience, experience, experience. :D
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  10. GiddyG

    GiddyG Terabyte Poster Gold Member

    2,471
    42
    140
    As always, I couldn't have put it better myself. I know of and work with people who are architects (not necessarily security-specific mind you) who have years of experience and not a certificate between them... or their certs are well out of date.

    They don't need them because of the circles they mix and the quality of the work they do means the governement agencies and other companies they work in know they can get it done. They are in demand regardless.
     
  11. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    19,136
    462
    374
    Yep. Certainly certifications can make you look more attractive, if for no other reason than you took the initiative to go out and get the bits of paper. But no company in their right mind will hire a security architect without a buttload of real-world experience.
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!

Share This Page

Loading...