CISSPs should know basic networking
Daniel posted an opinion on whether CISSPs should know basic technical skills such as networking. This has been a debate for some time. Some people feel that most CISSPs use there cert for management only. Some say that it is used for gaining a leg up in the security field and getting that golden job. I know several people that have there CISSP and they run the gamut from technical to non-technical. In my opinion every CISSP should have at least a cursory level of understand about technical issues.
I have seen many people with the CISSP that could not configure a home router and when they got into a meeting they could not tell if the wool over their eyes by more technical people. This can be very bad for the company they represent. If it is your job to mitigate risk for your company you must understand the risks that each technical decision poses.
The bottom line is that we are supposed to be security experts. And as an expert we should at least know the basics of any technical topic that could pose a security risk to our companies. I have said it once and I will say it again. Security is not a business preventing function, but a business enabling one. We enable business by eliminating or reducing risk to an acceptable level. How can you know what that level is if you do not understand the basics of the topic?