Thank you LC bhai for your valuable feedback.... so may I assume then that the CISA or CISSP may not be of much worth as a primary cert ...... and LC bhai, since you've gone through the CISSP path too, what is your take of the prospects of IS in the future..... just that I find myself at crossroads, stilll can't make up my mind whether to opt for traditional electronics engineering jobs like automation and industrial control stuff or info sec....
No problem SC.
I'm not exactly sure of the context in which you're thinking of CISA and CISSP as "primary" certs - perhaps, if you mean entry-level certifications (?), then I can see why there may be some hesitation in pursuing these on the outset. However, I have seen many people make great inroads by obtaining these certs - esp. the CISA one because it's pretty unique in its subject matter. The way I see it, if you're a newbie in the IS security arena, then these certs can help establish a baseline credential that can land you some work in a security analyst type role. Meanwhile for connoisseurs, maintaining the credential in good standing is a testament to their up-to-date knowledge.
You must understand the difference between a security architect and a product specialist. Cissp and Cisa provide information to further your path towards security architect who understands most of the domains involved in IS, where as a platform specific hands on training can make you a product specialist and one can end up becoming an administrator of the product. If you feel that you are better off sticking to a vendor, go for Cisco, Nokia, or any other vendor of your choice. With that said, if you are a starter and have no experience of IS, don't jump into the band wagon of cissp, it is difficult for a starter to become a security architect in one leap.
I agree with TS about deliberating your options according to the career path you wish to pursue - the distinction between an architect and a solution specialist is an important one indeed!
However, architects can certainly also specialize in specific solutions... this is especially true if you look at technology consulting firms - they advise on architecture, and also recommend specific partner solutions which they've had success with in the past. Normally, you'd find architects and implementers in a project team, but it doesn't hurt to have knowledge of both, while developing expertise in one. For example, when I was considering this route for myself, I obtained the CISSP and the Checkpoint certs because I wanted to advance further in application level firewalls. Others I know, pursued similar tracks with CISSP and Cisco's network security certs.
I also agree with TS in that CISSP is not to be taken as a silver bullet in IS security certs, and becoming an architect requires much more effort in terms of both experience and expertise. However, with the "Associate" credential, one should be able to get started with learning about best practices and hopefully with a basic role in devising and recommending security options.