{ "media_type": "text", "post_content": "Thoughts on the CISSP? It seems kind of scary to me coming from more of an accounting background. Currently in IT audit and would like to get more technical knowledge and maybe transition to something non-SOX and hopefully more cyber. Think the CISSP is worth it for this?", "post_id": "62452561df9ac80029dbd3aa", "reply_count": 9, "vote_count": 6, "bowl_id": "59fe77b3f641dc0011147d24", "bowl_name": "Risk Assurance", "feed_type": "bowl" }

Thoughts on the CISSP? It seems kind of scary to me coming from more of an accounting background. Currently in IT audit and would like to get more technical knowledge and maybe transition to something non-SOX and hopefully more cyber. Think the CISSP is worth it for this?

like
Posting as :
works at
You are currently posting as works at

Literally same pretty path as you dude. Came from accounting background on IT audit and looking to transition to take the cissp as well

like

IT auditors/consultants generally perform better than technical ppl on the CISSP. This is because IT auditors are focused more on the broader governance/management of the cyber program, and technical ppl tend to leverage their real-world experience, which may not fit into the “perfect ISC2” world.

CISSP is a management cert more than anything else. The technical stuff isn’t very deep. I personally recommend just diving into the material. The official book is quite dry though especially if you don’t have familiarity with the concepts. I suggest using a variety of sources to learn: book, practice questions, videos, flash cards.

like

just study for 4-5 months and take the exam. Not as hard as technical certification.

Yes the cissp is worth it, it's about the most technical exam you can take that isn't a platform or domain specific cert.

Would you all recommend that I study some concepts in general before studying for the actual exam prior? In terms of technical things

CISSP is not very technical and "cyber" is very vague. Depending on what cyber means to you the CISM or one of many more technical certs (CISA - gov agency - has a list). Also if the main goal is to get out of SOX, CISA (cert) will help you into IA and SOC. And a good prep for CISSP if you still want it.

Thanks! I have the CISA, I have just heard that CISSP is more technical and more for people that are doing other non-SOX work (which is what I do) like PCI, etc. I’m pretty decided on going for it so thanks for the advice

Related Posts

For someone who oversees security compliance at their organization and recently got a CISA, what are the next steps in my career progression?

I’m a Medicaid Consultant for my state with 10 years of experience. My job entails policy and procedures, data analysis, training and working with local government entities and private providers. I want to break into the private sector (Consultation/Business) as the pay is much higher and I have a better chance getting promoted. I have a masters but it’s in psychology, I’m wondering if I should obtain an MBA or should I get certifications? Thoughts?

like

My friend has following offers from three companies after MBA (two offcampus and one from campus)

1. Finance Effectiveness/ EPM role at one of the Big 4
2. Deal Advisory role at one of the Big 4
3. Organization strategy role from one of the top consulting companies (not Big 4)

Which role offers the best exit options? All the offers from US support teams of the companies.
OS role offers better than the other two (only slightly), but I am interested in a good profile

like

Hello Fishers!!

I want your opinions on IIM executive MBA Data Analytics and BA courses.

How is the course overall? And how much value does it hold post completion? From a CTC point of view?

Im completely from a non tech background, done MBA in Finance and working in the Insurance industry, please share honest reviews.

like

Full time mba vs FEMBA at UCLA?

like

Looking to go into DEI work but coming from recruiting. I think DEI and learning about HR is where id like to land. Anyone ever take the SHRM certification course and if so, did you feel like it was necessary to advance your career?

like

The only good things about pre-mba events being virtual is that I can’t be messy and start getting a reputation already 😂

like

I am aiming for a career in consulting in the future and I am really lost of what would be my first step.
I graduated from a public university in Egypt with 3.06 GPA score out of 4 and that is not the highest and also my background is petroleum engineering, so it is not in a high demand in the market.
I am confused whether to pursue a master's in engineering and spend few years as an engineer before applying for an MBA or try to get into one of the business school for a MIM?!

like

Just got my 3rd ding from MBB. Struck out at all three for MBA internship this summer. Really discouraging, going to give it another go in the fall but damn this hurts

like

Are people who get sponsored for MBA by MBB expected to return post-MBA? Can you intern at a non-consulting company during your summer internship? Do you burn bridges if you do not return to MBB?

like

Debating on offers from Google, Microsoft for L7/67 respectively.

Can someone assist with providing TC breakdown-including refreshers and any other applicable comp, please?

16 yrs exp. JD, MBA, PMP, OSCP, CISSP. Tier 1 city.

Thank you.

like

Dm me if you have below skill set .

5+ years of IT Experience. Minimum 3+ Years of working experience with Mulesoft
Should have Mulesoft Developer Certification.
Hands-on experience on Building interfaces on any EB platform.
Experience in Web API: SOAP, REST and authentication methods such as OAuth and SAML.
Mulesoft integration developers are also responsible for managing the any point Cloud Hub environment and supporting existing customer implementations.

like

Hi All,

Kindly help me in resolving the dilemma

MBA with Total YOE - 7+, relevant YOE- 5.3 , Skills - CYBERSECURITY,GRC, Audit.

I have got two offers
1. Genpact - 27 CTC (24 fixed + 10% variable plus gratuity) Manager level
2. Airbus - 23 CTC + 5 L JB
I really wanted to work with Airbus but they are not budging from the offer of 23 even after I told them I have a better offer from Genpact with better position. HR said they will come back..

You think Airbus will come back with better offer?

like

I have a 1:1 with our GC tomorrow about career growth in my dept which was triggered b/c I applied for an internal position (diff dept, no offer yet). Legal dept is small and unsure of growth. I’m currently getting and MBA and have different directions I can to take. Currently work in LA, 5+yrs exp, corp focused, $85k. Advice on what to negotiate? Am I underpaid?

What is the benefit of a part time mba? I want to get one but I don’t see much recruiting perks so what is really being achieved here..further advancement of current job?

like

Hello all,

I have a Black Belt in Lean Six Sigma. I have no idea what kind of roles I am suitable for. I would prefer green belt roles for now until I have a firmer understanding of what is expected of me. Can anyone point me in a direction of some sort as to what opportunities are out there ?

like

What should be the average salary for TPM role for 4 yoe?
MBA from tier 2 college

like
like

Canadian MBBers! I have an MBA dilemma.
Ibwill be staying in Canada and hope to work at M or B (ideally BCG but have solid references there and at M). I am looking at a Queens accelerated MBA, which is my ideal program. Q: Is it worthwhile looking into higher ranked programs outside of Canada given that this is my ideal program? Other programs I'm considering: 1yr USC Marshal MBA (~T15), IE Business School Online MBA (Spain) (T10 worldwide apparently?? [QS Rankings]). I am Located in Calgary.

like

PwC is there any supply chain consulting at PwC outside the Pharma and Life sciences space? Can you get into Supply chain consulting at Pwc without prior healthcare industry experience? I have MBA + military supply chain, civilian internet infrastructure supply chain, and software engineering experience.

like

Additional Posts in Risk Assurance

AITA? I live abroad. Invited a friend to come over for free, for vacation while I’m working so that they can explore the city. Result is they’re not independent and struggle exploring alone. they just spend all day playing video games or watching tv next to me when I’m working (my desk is in the living room). They knew upfront I was going to be working. This is super annoying. Can’t go into the office (not at EY anymore).
Ithink I’ll never invite friends to stay with me when I’m working lol

like

How’s them tacos!?

like

What do you do with a book shelf when your 11 month old just wants to throw all the books from the shelf? Remove everything? How long does this phase last? :)

like

I miss submitting time sheets. Switched to client side two months ago and hours have been brutal. Something therapeutic about submitting a 77 hour week 😂. Here, it’s like they don’t even know.

like

In BNY Mellon,
How is the work in Control systems(Risk and compliance) as a Java spring boot full stack developer?
Anyone working on that?

Hi fishers, I have 8YOE in finance services, client management and project management roles and now I'm getting offer fr HSBC for project manager GCB5 role My current fix - 13pa CTC 16pa I have few questions - Work culture Job security ? How much hike should I expect ? I'm thinking of 28-30fix (bcoz my previous emp gave his best to match my role and now hsbc role should have a certain budget and based on my research I see 35-40Lpa is for GCB5) please suggest me HSBC India HSBC

like

Used the very hyped "Good Genes" by Sunday Riley and broke out like crazy. Any suggestions? I have stopped using it. This officially ends my experiments with the hyped skincare products. Backtobasics.

like

My hospital is inducing me at 9pm on Sunday. This being my first I think this time has been solely decided based on the convenience of a doctor . Should I call the hospital and ask them to move it to early Monday morning so that way at least I am not eating anything before going into labor and also getting good sleep?

like

For anyone who does Roth 401k, let’s say you max the annual contribution ($19,500). Within the Roth 401k, does the contribution itself become taxed ? I.e the contribution of $19,500 becomes ~$12,000 (example) Or, can you pay it off outside the retirement pool —> Where you still have 19,500 in the Roth IRA and let it grow?

like

What favorite activities do you do or projects do you have on display for Open House?

like

Looking for a Christian Dior referral

like

Prozenics offers Scrum Master Certification training for details ping on 9884061174

How does one buy ETH thru a ROTH?

like

Seattle people, have salaries kept up with the crazy cost of living hike over the last few years?

Hi does anyone here work for BlackRock? I had a quick question about one of the groups over there and was looking for some insight.


TIA

like

Hi, I’m new on here and don’t have access to certain bowls. Does anyone know how I can gain access to some of these?

like

Does TechM employees get discounts on TechM cars?

Does anyone do commercial debt collection as their practice area? What is it like? I have an interview with a firm/collection agency that pays well and no billables so what is the catch?

like

Has anybody transitioned to an associate analyst role from a customer service/ broker position. I am trying to make a switch, I have a BBA in Finance and FINRA series 7/63. Any advice is greatly appreciated :)

like

Additional Posts (overall)

Thinking of leaving PwC dat after one year any suggestion on where to go next - transfer firms? I work so hard and endless busy season I dont want to leave necessarily but the hours are crazy

like
funnylikesmart

How do y'all stay motivated when you're not passionate about your job? It's getting hard for me to do more than the bare minimum these days and it's impacting my overall disposition and demeanor

likehelpful

A goal of mine has always been to stay in risk until Manager. Upper management has mentioned that they’d like to early promo me to manager. What worries me is that if i choose to go this route and the compensation is not up to my expectations/low ball (based on internal and external research I’ve been able to come up with some rough figures) - is there a way to decline the early promo? How would that look? The promo is not guaranteed so I feel as though it may be too early for a comp discussion

like

It's that time...🦃

What's one thing you're super grateful for in your life or career at the moment?

Drop it below! 👇

like

PwC is the auditor of my of my clients, they want to use the ACE-S tool to evaluate SAP access. Is this tool legit? I read an article in the past that I caused security issues. Thoughts?

like

Can you become CIO with Risk Assurance background?

likehelpfulfunny

I need to know... How hard is the CISSP compared to the CPA exam?

like

Assuming you’re not staying until Partner / MD, what is your exit plan and to what industry? I’m thinking of sticking it out in consulting until it strains family life and then find a large bank to exit to. Curious to know what others are planning. If you’ve already done, share your experience plz.

like
like

What’s the most effective way to land a job outside public accounting? I’m currently looking for one and wonder it’d be easier to talk to a recruiter or simply apply online for what I’m interested.

Anyone can share experience working industry for SOX/IA roles? Is there work life balance, good pay, etc.?

like

Psa to pwc peeps. Left pwc less than 6 months ago at the manager level. Already got a ‘spot’ bonus more than the retention bonus back in March after busy season and that’s on top of the guaranteed 15% bonus I will be getting later in the year. Trust me, life is better on the other side

likesmart

Finally got an offer to leave Risk Assurance, going into transaction services. For all of those still trying, don’t get discouraged you will get there.

likeuplifting

Risk assurance fish that have left for internal audit or similar work in the same “career field”; do you still hate it or is it better when not at a firm?

likefunny

Hi All, I have been working in IT Audit and doing a lot of pre implementation reviews, security design assessments of ERPs for the last 3 years. Prior to that I was working as an SAP consultant for 5 years. I feel like I have reached a saturation point and looking to branch into cyber security.

What is the best roadmap to start the process? I have a masters in MIS and a CISA. What certifications and projects would help me get into cybersecurity space? TIA!

like

Folks what should I expect in interview questions for "Advisory Associate, Technology Risk Management" at KPMG?

like

Recently switched from public accounting to industry and I badly miss the CCH tickmarks and the ease of using them in excel and pdf. Does anyone know of alternatives I can use to easily and quickly document testing?

like

Thougts on the CPA and CISA combination while in IT audit?

like