Question for my cyber security guys!!!

[eli77]

Where did you study?How much is the pay and what do you recommend for someone with no experience in the cyber security field:0

 

[DEEZEDBRAH]

I am not in cyber security but I have worked in the industry. I would recommend looking at a MIS OR IT degree preferably in the school of technology not business. Wherever you go, know its a long haul, and slog. You likely end up with a ****ty call center job or crappy technician gig after. Its part of the process. Get out fast. Acquire experience asap. Worry less about buzz words like cyber security. I as m aware many refer to the major as such. Focus more on the education being accredited. Get certified. Always stay on top. Lastly, learn how to code if you can hack it. I don't know any cyber security major who walked into a cyber security gig. You can climb high in tech in a span of 5/10 yrs pending dedication and willingness to work. Learn.

Good luck.

 

[eli77]

I am not in cyber security but I have worked in the industry. I would recommend looking at a MIS OR IT degree preferably in the school of technology not business. Wherever you go, know its a long haul, and slog. You likely end up with a ****ty call center job or crappy technician gig after. Its part of the process. Get out fast. Acquire experience asap. Worry less about buzz words like cyber security. I as m aware many refer to the major as such. Focus more on the education being accredited. Get certified. Always stay on top. Lastly, learn how to code if you can hack it. I don't know any cyber security major who walked into a cyber security gig. You can climb high in tech in a span of 5/10 yrs pending dedication and willingness to work. Learn.

Good luck.

what certs do you have?

 

[DEEZEDBRAH]

what certs do you have?

I don't. I recommended you do though. Opportunity for growth is huge. My mates work in tech. Lots of opportunities. Many got a side hustle. One has his own business.

 

[CAPSLOCK BANDIT]

Where did you study?How much is the pay and what do you recommend for someone with no experience in the cyber security field:0

Cyber Security is not a joke, you need to understand the highest echelons of our technology today and keep up with new innovations, this alone is a full time job.... Definitely not a position you would be considered for without significant education behind you and if not, would say that security might not be so reliable lol

 

[eli77]

Cyber Security is not a joke, you need to understand the highest echelons of our technology today and keep up with new innovations, this alone is a full time job.... Definitely not a position you would be considered for without significant education behind you and if not, would say that security might not be so reliable lol

whats your background

 

[CAPSLOCK BANDIT]

whats your background

Im an artist but I have a friend, she is amazing with computers, once I saw what she could do or anyone with that type of knowledge, I stopped putting info online

 

[EyeOnThePrize]

Where did you study?How much is the pay and what do you recommend for someone with no experience in the cyber security field:0

You can get a decent job with one or two respected certs. If you get something like the CISSP you're made. You have to swear an oath to use your powers for good and I've heard people get calls from casinos on the west coast with great offers as soon as they get it. The DoD will also take you instantly.

For some perspective only 141,607 people worldwide hold a CISSP.

There are even fewer people holding an active CCIE, something like 50,000, and only a small portion of that are CCIE Security cert holders. You can imagine the starting pay, solid six figures.

The best certs are pretty challenging but obviously have the best rewards. Formal schooling is a waste imo if you're doing cyber security. Just hit the books hard, build a rack, break it, fix it, break it again, fix it, have others break it, fix it, and you'll be in prime shape to pass the exams.

Just as an FYI for something like the CCIE that's exactly what happens. You show up and are instructed to setup a rack to work in a specific way. You have a time limit. You then retire for the evening and the panel breaks something on the rack. The next day you're instructed to find the problem and correct it. You retire again in the evening and they break it again. This back and forth goes on for days, with each subsequent break being harder to diagnose and rectify. All these events have time limits and it's not unusual for your diagnosis to take 8 hours. You are truly tested and they make absolutely sure you know what you're doing before bestowing the cert to you.

It's really mind numbing stuff to study at first because the protocol names are really technical, awkward, and unintuitive. Once you find a rhythm it gets easier since it all builds on itself.

You could also get a bunch of smaller certs instead. For example AWS certs are easier and are always in demand, not to mention you'll probably get some business ideas. Lots of people do that and never have problems finding work. Best of luck!

 

[eli77]

Im an artist but I have a friend, she is amazing with computers, once I saw what she could do or anyone with that type of knowledge, I stopped putting info online

elaborate

 

[eli77]

You can get a decent job with one or two respected certs. If you get something like the CISSP you're made. You have to swear an oath to use your powers for good and I've heard people get calls from casinos on the west coast with great offers as soon as they get it. The DoD will also take you instantly.

For some perspective only 141,607 people worldwide hold a CISSP.

There are even fewer people holding an active CCIE, something like 50,000, and only a small portion of that are CCIE Security cert holders. You can imagine the starting pay, solid six figures.

The best certs are pretty challenging but obviously have the best rewards. Formal schooling is a waste imo if you're doing cyber security. Just hit the books hard, build a rack, break it, fix it, break it again, fix it, have others break it, fix it, and you'll be in prime shape to pass the exams.

Just as an FYI for something like the CCIE that's exactly what happens. You show up and are instructed to setup a rack to work in a specific way. You have a time limit. You then retire for the evening and the panel breaks something on the rack. The next day you're instructed to find the problem and correct it. You retire again in the evening and they break it again. This back and forth goes on for days, with each subsequent break being harder to diagnose and rectify. All these events have time limits and it's not unusual for your diagnosis to take 8 hours. You are truly tested and they make absolutely sure you know what you're doing before bestowing the cert to you.

It's really mind numbing stuff to study at first because the protocol names are really technical, awkward, and unintuitive. Once you find a rhythm it gets easier since it all builds on itself.

You could also get a bunch of smaller certs instead. For example AWS certs are easier and are always in demand, not to mention you'll probably get some business ideas. Lots of people do that and never have problems finding work. Best of luck!

whats your background

 

[EyeOnThePrize]

whats your background

I prefer not to disclose much about my career on here. Suffice it to say that I'm deep in the tech industry.

 

[revolutionnow]

I prefer not to disclose much about my career on here. Suffice it to say that I'm deep in the tech industry.

Thanks for the info any more info?

 

[synergy1]

Just as an FYI for something like the CCIE that's exactly what happens. You show up and are instructed to setup a rack to work in a specific way. You have a time limit. You then retire for the evening and the panel breaks something on the rack. The next day you're instructed to find the problem and correct it. You retire again in the evening and they break it again. This back and forth goes on for days, with each subsequent break being harder to diagnose and rectify. All these events have time limits and it's not unusual for your diagnosis to take 8 hours. You are truly tested and they make absolutely sure you know what you're doing before bestowing the cert to you.

Very interesting insight. I don't do much IT stuff myself outside of setting up my deployments and focus more on the application side of things. I can safely say, as a self-learner, the process to truly learn the stuff is the exact same thing. More specifically, I developed a full-fledged platform from scratch (wrote the code, tests, and deployed it) and you learn 100X more from debugging all the issues than you can simply reading a book. Most books work on the premise that everything is ideal, while in the real world, its obviously not.

Books are good to get the concepts known. If I wanted to break into this space, I would do what someone else said. Build a rack, then try to break it, diagnose, and fix it. If this process is anything like software development, I imagine it would take a great deal of time and frustration to master it.

 

[xplt]

I didn't study. I made a three year professional education after school and started as a Sysadmin. after about 8 years experience with helpdesk, Infrastructure and networking and general IT security, I started to dig in cybersec.

While cybersecurity is a very large field, which touches nearly every IT technology aspect you should have had your experience in IT before you start. Where you start depends on the skills, you already have. If you ask me, you should have solid understanding in Networking and Infrastructure, all the different OS's, Scripting and Programming languages. The list goes on. Do you have any specific jobs in mind? Pentesting, SOC analysis, forensics, cloud security? DO you have any basic IT skills and knowledge? How much time do you want to invest? IT, especially cybersecurity needs dedication and ongoing studying, leraning, trying. You have to be persistent af.

One of the best certs to get your food in the door is CompTIA's Security+. Where I live, 60-80k per year is an entry salary.

 

[eli77]

was thinking of getting that cert along with ethical hacking

 

[eli77]

very good input thanks

 

[logicallefty]

I currently have two jobs, one in information security and one in law enforcement. I'm certified in digital forensics geared more towards the law enforcement side right now, nothing else. If I were to get an information security specific cert it would be the CISSP. That cert is respected in both of my career fields and it's not vendor specific. My second choice in an information security cert in 2020 would be any other cert that is NOT vendor specific. I've seen too many IT people get say Cisco certified or Microsoft certified. I've seen law enforcement folks get EnCE certified and learn only Encase, no other digital foreisncs tools. Back in 1998 these vendors were the ticket but in 2020 you have to be a jack of multiple trades. Getting cert married to one vendor doesn't cut it anymore.

 

[xplt]

I currently have two jobs, one in information security and one in law enforcement. I'm certified in digital forensics geared more towards the law enforcement side right now, nothing else. If I were to get an information security specific cert it would be the CISSP. That cert is respected in both of my career fields and it's not vendor specific. My second choice in an information security cert in 2020 would be any other cert that is NOT vendor specific. I've seen too many IT people get say Cisco certified or Microsoft certified. I've seen law enforcement folks get EnCE certified and learn only Encase, no other digital foreisncs tools. Back in 1998 these vendors were the ticket but in 2020 you have to be a jack of multiple trades. Getting cert married to one vendor doesn't cut it anymore.

I totally agree. Vendor certificates are a waste of time. The only vendor certs I would get right now are Azure and/or AWS. CompTIA and ISC2 would be my way to go.

Do you have experience with SANS training?

 

[revolutionnow]

What law enforcement department

 

[revolutionnow]

I currently have two jobs, one in information security and one in law enforcement. I'm certified in digital forensics geared more towards the law enforcement side right now, nothing else. If I were to get an information security specific cert it would be the CISSP. That cert is respected in both of my career fields and it's not vendor specific. My second choice in an information security cert in 2020 would be any other cert that is NOT vendor specific. I've seen too many IT people get say Cisco certified or Microsoft certified. I've seen law enforcement folks get EnCE certified and learn only Encase, no other digital foreisncs tools. Back in 1998 these vendors were the ticket but in 2020 you have to be a jack of multiple trades. Getting cert married to one vendor doesn't cut it anymore.

Dm me