 |
|
 |
|
 |
Greg Neilson
|
|
|
|
 |
 |
Style over Substance? |
| In the wake of Microsoft's announcement of its new security certifications, Greg discusses what changes really would have impressed him. |
| by Greg Neilson |
|
7/9/2003 -- Last month Microsoft introduced new security specializations for its MCSA and MCSE titles. Frankly, I just can't get excited about them.
To me, MCSA: Security and MCSE: Security seem to be more about sending another signal to the IT world that Microsoft is serious about security than about offering certification paths that will benefit holders and those who will employ them.
Of course, all vendor certifications are about marketing in one way or another, but these new announcements appear to have less substance than most. After all, the exams were already there -- these new certifications only offer a new label for them. This seems to be not unlike when Microsoft announced the now-defunct MCSE+I title, which rightly died a quick death because of the meaningless adoption of the "Internet" within its name. It never reached critical mass and was soon abandoned. And let's not mention all of those MCP specializations that also no longer exist . . .
Nowadays security is such an integral component in working with an operating system that separating it out for a certification title doesn't make any practical sense. (This was the argument that Microsoft certification representatives had used in the past when asked about including a security specialization; that it was included in the core certification program). It's like offering a driving license with a specialization in the accelerator. Hiring managers will likely assume that someone with an MCSE will likely have the knowledge already required for the MCSE: Security. So, where's the beef?
If I were in the position to tweak Microsoft's certification program, there's three changes I'd would have made instead:
1) Add a compulsory hands-on lab exam to the MCSE.
See my earlier column here for more on my reasons for this.
2) Require fewer exams overall in the MCSE program.
Let's face it: The number of exams needed to earn the MCSE (seven!) is getting ridiculous, especially considering that with the current elective options, most people will take all operating systems exams instead of those in areas like Exchange and SQL Server. There simply isn't a need to take that many exams on one topic, no matter how complex the information can get. Surely five is enough! Otherwise, the certification program becomes more of a battle of attrition than a test of technical skills. Plus, there's already too many overlapping objectives within the content of the program's current exams.
3) Add electives for scripting and automation of administration tasks.
This is such a powerful area --- something I think more people should have a good working knowledge of. Certainly those who do system administration for Unix and mainframe platforms are expected to be able to work with scripts, so I don't see why the same shouldn't be true for those who work with Windows.
One thing I will say for the security specializations is that the inclusion of the CompTIA Security+ exam (as an optional elective) is an interesting development. I see it as further evidence that these single CompTIA exams covering elementary knowledge in a specific area can be more useful and valuable when part of a larger certification program (we also see this with the use of CompTIA titles in other programs, including Novell). Maybe this is the role that CompTIA will play in the industry going forward -- providing common building blocks for other certification programs.
Now if Microsoft can do something about the never-ending stream of hotfixes I have to have my team analyze, test and deploy to our supported server fleet, I will be impressed. A cynic may say that at least it keeps us employed, but it sure doesn't offer any business value having to waste so much effort here. The jury is still out on whether Windows 2003 is going to deliver on the promise of the trustworthy computing initiative, or whether we will have to wait for something else altogether.
Are you interested in completing these new certifications? If the new certifications left you flat too, what changes would you be excited about?. Let me know by posting your thoughts below. 
|
Greg Neilson, MCSE+Internet, MCNE, PCLP, is a Contributing Editor for Microsoft Certified Professional Magazine and a manager at a large IT services firm in Australia. He's the author of Lotus Domino Administration in a Nutshell (O'Reilly and Associates, ISBN 1-56592-717-6). You can reach him at Attn: Greg.
|
|
| |
|
More articles by Greg Neilson:
|
There are 27  user Comments for “Style over Substance?”
|
|
Page 2 of 3
|
| 7/11/03: You either get it or you don't says: |
Here's something funny, I've been able to fake it in this career forever. You don't really need to know all that stuff above to stay employed. What does management want, what does your boss do when he's not at work, what paper certs can I get and then forget the information the next day. Listen you little geeks, there is a life outside your little box. My friend showed me this site and I'd figure I'd reply. All you sniveling little maggots who whine about your jobs going overseas should try leaving your desk once and a while. If you realize what's going on in the mind of management, you'll stay ahead of the curve. Here's the trick, never admit that you don't know something. Then, after they leave you alone for a minute, study exactly what it is they want and get back to them. You don't have to waste your time learning and memorizing all this shit unless it's "critical time" and you have to serve up brownie points. I love my life, I make tons of cash, never knew half the stuff that most IT "gurus" I worked with forgot, but they lost their jobs and I took more money home. Get a clue, if you can't socialize then you'll never stay employed for long. Like it, love it, embrace it...but's it's all a game you've played since you were a kid. Peace:) |
| 7/11/03: The above post is almost true... says: |
While I don't agree with mostof the post above, I do agree with methology of researching the problem before you admit you don't know it. The last thing any boss wants to hear is you say "I don't know". Instead, say "Can I get back to you about this problem?" or even try telling a half truth..."I need some time to research this problem, but I have a good idea what's wrong". Honestly, either of those lines are much more impressive then "I don't know, I have to go ask xxxxxx person". 95% of IT work is research, not remembering trivial widgets in Windows or command line switches. Know the basics, get the degree (4 year or more!), know where to research, and you'll be fine. When you do get grilled on a particular problem, that's where you learn. Do it enough and you'll remember where it's at the next time. That's all. RESEARCH RESEARCH RESEARCH...AND SOCIALIZE :) |
| 7/11/03: Anonymous says: |
I posted the anonymous "pretty good posts" post, and a few good responses followed, and of course then there was someone who called everyone "maggots" and "little geeks". And then this poster bragged about how much money he or she was making; like we really care. If you truly are employed and making so much money, then why don't you take a less condescending approach to your comments, instead of bragging about how great you are? And maybe offer some real advice on how to do well in this crazy field, because last time I looked, the technology industry hasn't really recovered yet. And thus, quite a few very smart people who are good at this stuff are out of jobs. Socializing is very important at any job, but that's not the only thing to it, or every person who was a great shmoozer would be rolling in the riches right now, instead of showing up for the hard-to-get interview and (usually) coming up dry. |
| 7/14/03: pDoGG says: |
About the guy posting about the money he makes and how he doesn't study anything....I wouldn't be suprised if you were the person who lost out during interviews for my job. The whole reason I landed my networking job in a mid-tier site (a nice job - great pay and challenges) over other guys that were equally, if not more qualified is their approach to problems. The interviews came down to three people, including me. The reason I landed the job was that I could admit that I don't know everything. The other two BS'd some of their answers and in a production environment that is NOT acceptable. If you don't know something no one will take it out on you. Admitting that you're not a god makes you look more human sometimes. When maximum uptime equals highest amount of availability, I certainly don't want some guy flipping switches that he doesn't know. Being honest and open towards people shows professionalism. Those who don't focus on being professional tend to be the ones who don't make it too well. It takes a level of maturity to make it in IT. Without it, good luck. |
| 7/17/03: Anonymous says: |
ggg |
| 7/20/03: Anonymous says: |
Certs or no certs, it always comes down to the basics and the way you handle a sticky situation. Great posts all.Good Luck. |
| 8/8/03: Anonymous says: |
gee , listenning to you guys is better then comedy monday , windows network easy to set up for the average joe ? sure but how many of these joes are being used as drones to stage DDOS on the net ? just scan for open netbios ports and default shares do you whant thoses guys running , lets say your bank network ? you jokers got hit by code red, nimda and bugbearII huh? i'm not surprised ... on another subject sure an MBA is nice , i'd have some frat house memories to share with my CEO on the golf course and it would be easier to market my IT plan to management , but would it keep my network safe ? dont think so ..... (My wife is MBA and i helped her with her studies for 3 years , i know the cursus), in my career as a techy and engineer i had so may recruter and managers that had impressive diplomas in buisness but could'nt explain the difference between a bit and a byte if their life depended on it that it's sad , how can you manage someone when you dont even have the basic vocabulary or IT concepts in this ever evolving field to communicate with him or her?, sure my MCSA S and MCSE S is time limited , but this is the point , never stop learning ,and now as a manager and recruter i'm able to weed out the paper cert by quizing worst then vue or prometrics in the first 30 minutes of an interview, IT is not for the brain lazy that whant a life time diploma last thing , about the security requirements for MCSA MCSE cursus , i have done ALL the exams , ISA , designing security, (220) managing security (214) and Security plus from CmpTIA , and i have to say that 214/220 is NOT a walk in the park (like i thought in the first place) it requires deep OS undersanding i defy any MS basher to walk in there without any prep , but the comptia security should be taken off the cursus , did it in about 40 minutes (that's an answer every 25 seconds) this is so general and basic that any 1 year exeprienced tech can easily pass it , and i would'nt give a security administration job to someone sporting this exam only , thinking this is suposed to be a high grade exam for comptia i cant imagine what thier A N or S plus exam is like , defenetly not worth 240$ |
| 8/14/03: Anonymous says: |
Well, for one, and MBA would teach you to spell. |
| 8/14/03: Anonymous says: |
An MBA, not "and" MBA. You must be working on yours in order to get to the proper grammar level I take it. |
| 8/15/03: Anonymous says: |
what? did you say the "NBA" how the hell Kobe Bryant got into this? |
First Page Previous Page Next Page Last Page
|
|
|
|
