CyberWire Daily Do certifications matter? [CISOP]
8 snips
Mar 6, 2026 Simone Petrella, cybersecurity leader and founder of CyberVista with DoD and private-sector experience, joins to debate the role of certifications. They explore how certs can open doors, limitations of multiple-choice testing, costs and incentive misalignment, and ways to redesign standards to better serve hiring and diversity goals.
AI Snips
Chapters
Transcript
Episode notes
Certifications Open Doors But Don't Prove Competence
- Certifications serve as a passport that opens doors but do not guarantee job performance or practical competence.
- Kim Jones notes many certs benchmark theoretical knowledge and employer screening, yet often fail to prove real-world problem solving.
Kim's Two Very Different CISSP Experiences
- Kim Jones recounts taking the CISSP in 1998, studying for months and leaving the 400-question exam unsure if she passed.
- Three years later she retook a shorter 250-question CISSP and found it markedly easier despite similar time pressure.
Choose Broad Plus Role Specific Certifications
- For entrants, pursue certs that show broad technical understanding plus role-specific skills, such as CompTIA Security+ and cloud provider security certs.
- Simone recommends AI familiarization and targeted certs like OSCP for penetration testing.