This week's book giveaways are in the Refactoring and Agile forums.
We're giving away four copies each of Re-engineering Legacy Software and Docker in Action and have the authors on-line!
See this thread and this one for details.
Win a copy of Re-engineering Legacy Software this week in the Refactoring forum
or Docker in Action in the Cloud/Virtualization forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Need career advice.

 
Kashyap Hosdurga
Ranch Hand
Posts: 92
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi All,

I am having nearly 9 years experience and need to make some decision about my career.
I want to try something before settling down.

My exp is in Java development and test automation. Now I am planning my way to become Java architect + security expert
My current plan is:
SCWCD, SCEA (maybe TOGAF) and Certified Ethical Hacker (C|EH).

Can anyone please suggest me if the path I’ve chosen is good. Is there any value addition if an architect knows about security as well?
Thanks in advance.
 
Joe Harry
Ranch Hand
Posts: 10087
3
Eclipse IDE Mac PPC Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
How does a J2EE architect position relate to a Certified Ethical Hacking? Could you please justify?
 
Joe Harry
Ranch Hand
Posts: 10087
3
Eclipse IDE Mac PPC Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Secutiry experts would be a good deal for concepts like Cloud Computing but for a Java architect role, I guess it looks totally the other direction. But do you have any justifications?
 
Deepak Bala
Bartender
Posts: 6663
5
Firefox Browser Linux MyEclipse IDE
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Is there any value addition if an architect knows about security as well?


I dont think this is a choice. If you are an architect you need to know how to secure applications. You need to clarify what you mean by security

Can anyone please suggest me if the path I’ve chosen is good


No one can say it is good / bad. You have to decide if you are good at doing what you propose you want to do. Certifications help you get theoretical knowledge on these subjects. Arguable SCEA is not all theory but you are not designing a real project either. You will have to leverage your experience and back it up with the certification if you choose to take it.
 
Joe Harry
Ranch Hand
Posts: 10087
3
Eclipse IDE Mac PPC Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I never ever saw in my career a J2EE architect doing penetration testing for a firms network infrastructure. Any ideas guys?
 
Joe Harry
Ranch Hand
Posts: 10087
3
Eclipse IDE Mac PPC Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I guess even ethical hacking is illegal in some countries.
 
Kashyap Hosdurga
Ranch Hand
Posts: 92
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks for all the replies.

I'm also new to security testing. In my current project I was asked to take care of information security (meaning making sure all the s/w, applications, building etc is secure from external threats like hacking, unauthorized access etc). That is when I came across this certificate (CEH) and my current role requires this one.

So this made me think if I can leverage this with my existing Java skills to have a package deal for my employer.

Like: Java architect with software security knowledge.

Hope this clarifies all the questions.

Thanks,
Kashyap
 
Joe Harry
Ranch Hand
Posts: 10087
3
Eclipse IDE Mac PPC Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Software security is totally different from Network Security. The CEH certification is more from a network perspective.
 
Jimmy Clark
Ranch Hand
Posts: 2187
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I never ever saw in my career a J2EE architect doing penetration testing for a firms network infrastructure. Any ideas guys?


An architect must have knowledge of security and networking technologies. He/she should be able to sufficiently discuss these aspects and delegate the responsibilites to the appropriate individuals and/or departments.

His/her focus should be on overall architectural design and managing the technical implemenation. This includes managing groups of systems engineers, software engineers, testers, and junior programmers. If "penetration testing" is required, someone on his/her team should be able to execute the task. The architect himself/herself does not execute the task.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic