Working in Vulnerability Management, Threat Intel, and Security Awareness — Which Certification Would Actually Move My Career Forward?
Hi everyone,
I’m currently working in cybersecurity with around 4-5 years of experience, but I don’t hold any cybersecurity certifications yet.
My day-to-day work includes:
• Vulnerability Management (Nessus, Qualys, remediation tracking, reporting)
• Vulnerability Assessments / Audits
• Threat Intelligence
• Phishing Campaigns & Security Awareness
• Security Communications / Executive Reporting
• CIS Benchmark Assessments
I’m looking to strengthen my profile and improve my long-term career prospects. Since certifications can be expensive and time-consuming, I’d like to focus on the ones that provide the most value for my career path.
The certifications I’m currently considering are:
• CompTIA Security+
• CEH
• eJPT
For those working in Vulnerability Management, Threat Intelligence, Security Operations, GRC, or Security Engineering:
• Which certifications have provided the most value in your career?
• Which certifications are most respected by employers today?
• Are Security+, CEH, or eJPT worth pursuing given my current experience level?
• Are there better certifications I should consider instead?
• If you were in my position, what certification roadmap would you follow over the next 2–3 years?
Any advice would be greatly appreciated.
Thanks!