What are the top cybersecurity certifications that you look for among hiring candidates? Which ones are good-to-have and which do you consider a must-have, if any?

Security & GRCTalent Sourcing & Hiring
1.6k viewscircle icon3 Comments
Sort by:
CISO in Software2 years ago

I do not look for certifications, I look for experience and results.  I love when I can see examples of their work and skills: GitHub, blogs, documentation, repos, etc.

CISO in Government2 years ago

For junior analysts and engineers, we look for CySA+ and Security+ or equivalent. For senior analyst, SSCP and CEH are very desirable. And for management roles, CISM, CISA and CISSP.

Head of Information Security in Services (non-Government)2 years ago

It depends on the role. CISM is good for leadership roles, CISSP for engineers and CISA for GRC type roles. CySA+ is a good SOC/entry level cert.

Lightbulb on1

Content you might like

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

Read More Comments

How many hours on average does your team spend on compliance and reporting each week?

Less than 5 hours22%

5-10 hours51%

11-15 hours17%

16-20 hours6%

21-25 hours1%

More than 25 hours2%

View Results

How is AI implementation impacting your organization’s cyber insurance premium or coverage so far?

Read More Comments

Cyber threat hunting is gaining momentum in the industry. If you are offering this as part of your advanced security services, which challenges are you experiencing?

Poor efficiency of the detection and threat hunting solution (SIEM/SOAR, EDR solutions)41%

Too much time wasted on false positive alerts68%

Lack of security skills and defined processes31%

Not enough demand in the market8%

View Results

What adjustments are you planning to make to your org’s cyber budget for 2026 (if any)?

Read More Comments