I am a couple days into Cybrary, and here are my initial reactions:
- No need to set up the Labs. They are all configured for you and all you have to do is start writing commands
- Mentors! I have set up times to start talking to some people who know about the field. I start my first session with a mentor today
- On a path for actual certifications. The Penetration Tester Track prepares me for the:
- Security+ (most likely not going to do since I have my CISSP)
- E-Council CEH (I have v.7 of this one already, but I might retake it since my original go at it is a pitiful story)
- CompTIA CySA+ (definitely thinking about this one, but there is a tangent PenTest+ cert – not sure why Cybrary has me going for the analyst cert in the Pen Testing Curriculum. Something to ask the mentors)
- CompTIA CASP (for sure this one. I think this one is the CompTIA advanced cert. Also, I need five years of hands-on experience and I am not sure if I qualify there at the moment. Another question for the mentors)
- No need to set up the Labs. They are all configured for you and all you have to do is start writing commands. This leads to not learning how to set up your own environment, troubleshooting, etc.
- It’s aggravating that when I complete a Lab, it doesn’t mark it as complete
asit should. I have asked about this, and they say it’s a small bug/glitch. I hope it can be fixed. It’s irritating and makes it hard to track my progress – for myself and Cybrary.
- Money – it’s a little less than $100/month. BUT, if it lands me in a Pen Testing position, I am game. This is something to talk to my mentors again on… how to enter the Pen Testing field without just dropping my current career in policy until I can ramp up Pen Testing. This is a long way from now it feels like, so yeah. Oh, and SecureSet, well, they are $20K which is hefty and their career counselor has flaked out on me.
So TL;DR, the Pros outweigh the cons. But, to continue with my own pursuit of spinning up my own lab, I am going to continue with Georgia Weidman’s book on Penetration Testing. I think there are things to be learned from both approaches.