Should i pursue cissp or focus on something more specialized in security?

[Richard92]

I’m trying to decide if getting the CISSP is the right next step for me, or if I should focus on something more specialized. I’ve been a senior sysadmin for about five years, mostly in infrastructure, but my role is shifting toward more security-focused projects and I’m not sure this broad management certification is what I actually need for that path.

[Benjamin_L]

I’ve been in the same boat. The CISSP feels like a broad umbrella for governance and risk, which is useful, but it didn’t map neatly to the hands-on security work I do. After five years in infrastructure I tested the waters with a few targeted certs instead and it helped me land more security projects.

[ZacharyM]

I skipped the broad one and went after cloud security and incident response certs, plus practical labs. The payoff was immediate in projects we run day-to-day. If your trajectory is more architecture or program management, that broad credential can still help, but for pure security engineering the depth of a focused cert beats it.

[SophiaSB]

Maybe the real issue isn’t the cert at all but how your team defines security work. I had a similar jump and realized I needed a clearer path—either specialize or move into a role that blends infra and security. Do you have a concrete role target in mind, or is it still fuzzy?

[JonathanOW]

I felt rushed to chase something with prestige, and it backfired a bit. The first six months after starting prep for that kind of credential felt like juggling topics I hadn’t touched in years.