wood burning stoves 2.0*
The moose likes Jobs Discussion and the fly likes Need career advice. Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Careers » Jobs Discussion
Bookmark "Need career advice." Watch "Need career advice." New topic
Author

Need career advice.

Kashyap Hosdurga
Ranch Hand

Joined: Sep 19, 2005
Posts: 87
Hi All,

I am having nearly 9 years experience and need to make some decision about my career.
I want to try something before settling down.

My exp is in Java development and test automation. Now I am planning my way to become Java architect + security expert
My current plan is:
SCWCD, SCEA (maybe TOGAF) and Certified Ethical Hacker (C|EH).

Can anyone please suggest me if the path I’ve chosen is good. Is there any value addition if an architect knows about security as well?
Thanks in advance.
Joe Harry
Ranch Hand

Joined: Sep 26, 2006
Posts: 9344
    
    2

How does a J2EE architect position relate to a Certified Ethical Hacking? Could you please justify?


SCJP 1.4, SCWCD 1.4 - Hints for you, Certified Scrum Master
Did a rm -R / to find out that I lost my entire Linux installation!
Joe Harry
Ranch Hand

Joined: Sep 26, 2006
Posts: 9344
    
    2

Secutiry experts would be a good deal for concepts like Cloud Computing but for a Java architect role, I guess it looks totally the other direction. But do you have any justifications?
Deepak Bala
Bartender

Joined: Feb 24, 2006
Posts: 6661
    
    5

Is there any value addition if an architect knows about security as well?


I dont think this is a choice. If you are an architect you need to know how to secure applications. You need to clarify what you mean by security

Can anyone please suggest me if the path I’ve chosen is good


No one can say it is good / bad. You have to decide if you are good at doing what you propose you want to do. Certifications help you get theoretical knowledge on these subjects. Arguable SCEA is not all theory but you are not designing a real project either. You will have to leverage your experience and back it up with the certification if you choose to take it.


SCJP 6 articles - SCJP 5/6 mock exams - More SCJP Mocks
Joe Harry
Ranch Hand

Joined: Sep 26, 2006
Posts: 9344
    
    2

I never ever saw in my career a J2EE architect doing penetration testing for a firms network infrastructure. Any ideas guys?
Joe Harry
Ranch Hand

Joined: Sep 26, 2006
Posts: 9344
    
    2

I guess even ethical hacking is illegal in some countries.
Kashyap Hosdurga
Ranch Hand

Joined: Sep 19, 2005
Posts: 87
Thanks for all the replies.

I'm also new to security testing. In my current project I was asked to take care of information security (meaning making sure all the s/w, applications, building etc is secure from external threats like hacking, unauthorized access etc). That is when I came across this certificate (CEH) and my current role requires this one.

So this made me think if I can leverage this with my existing Java skills to have a package deal for my employer.

Like: Java architect with software security knowledge.

Hope this clarifies all the questions.

Thanks,
Kashyap
Joe Harry
Ranch Hand

Joined: Sep 26, 2006
Posts: 9344
    
    2

Software security is totally different from Network Security. The CEH certification is more from a network perspective.
Jimmy Clark
Ranch Hand

Joined: Apr 16, 2008
Posts: 2187
I never ever saw in my career a J2EE architect doing penetration testing for a firms network infrastructure. Any ideas guys?


An architect must have knowledge of security and networking technologies. He/she should be able to sufficiently discuss these aspects and delegate the responsibilites to the appropriate individuals and/or departments.

His/her focus should be on overall architectural design and managing the technical implemenation. This includes managing groups of systems engineers, software engineers, testers, and junior programmers. If "penetration testing" is required, someone on his/her team should be able to execute the task. The architect himself/herself does not execute the task.
 
jQuery in Action, 2nd edition
 
subject: Need career advice.
 
Similar Threads
Training on Java Security
SCEA exam
SCEA Exam & Architect
Developer or Architect? Which One is a Better and Secure Path?
JBoss AS?