Hello,
I work for a small business with only 2 IT professionals including myself. My coworker only holds a Security+ Cert with no Bachelor's Degree and myself with a Bachelor's Degree in CS, Security+, and recently acquired CISSP.
Our issue is needing to be compliant with the DoD 8140's DCWF roles and the cert requirements. I was informed that my CISSP, though great, didn't meet many of the roles requirements as it covers a wide breadth of knowledge but not depth enough for many of the roles.
Based on this information, does anyone have recommendations on what certs myself and my coworker should be pursing to meet as many of the roles as possible? I was considering CASP+ or GICSP, but they seem like they still don't carry a large footprint in the sheer number roles the DCWF covers.
Also, any advise to maybe circumvent requirements by asking a higher authority for approval that CISSP will meet lower level requirements would be much appreciated. Maybe my understanding of the 8140 requirements is flawed as well.