ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    I am thinking about getting into Security

    Scheduled Pinned Locked Moved IT Discussion
    jobsit securitycertified ethical hackerhackinghackerpenetration testingpen scanning
    21 Posts 10 Posters 5.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • IRJI
      IRJ @dafyre
      last edited by

      @dafyre I was told that we would like to hire internally for that position. We would look to hire someone with training to do it. Then I got told to find out about the ethical hacker course. Now I'm approved for the training

      dafyreD 1 Reply Last reply Reply Quote 2
      • dafyreD
        dafyre @IRJ
        last edited by

        @IRJ said in I am thinking about getting into Security:

        @dafyre I was told that we would like to hire internally for that position. We would look to hire someone with training to do it. Then I got told to find out about the ethical hacker course. Now I'm approved for the training

        I rest my case. 🙂

        thwrT 1 Reply Last reply Reply Quote 2
        • thwrT
          thwr @dafyre
          last edited by

          As said before, getting in love with *sh (bash, ksh, ash, ...) is crucial even in a pure Windows environment. Learn it, understand it, marry it, whatever helps. SAM got quite a few starter guides here at ML. Personally, I like to throw my trainees into ice cold water by telling them to do a stage 3 install from source of Gentoo Linux. Depending on their skills, they will go even further by installing some WM with GPU acceleration. They tend to be scared or even cry for mom, but they will understand the basics at the end of the day. Sure, it's cruel, but it works.

          Aside from learning Linux, I would think about how permanent this job is. They won't need a dedicated security guy for 40 years, expect you are working at a hoster or with 1000+ users maybe.

          IRJI aaron-closed accountA 2 Replies Last reply Reply Quote 1
          • IRJI
            IRJ @thwr
            last edited by

            @thwr said in I am thinking about getting into Security:

            Aside from learning Linux, I would think about how permanent this job is. They won't need a dedicated security guy for 40 years, expect you are working at a hoster or with 1000+ users maybe.

            Well, I do work in banking. We end up paying for 2 or 3 pen tests a year as it is now.

            scottalanmillerS 1 Reply Last reply Reply Quote 1
            • aaron-closed accountA
              aaron-closed account Banned @thwr
              last edited by aaron-closed account

              This post is deleted!
              travisdh1T thwrT 2 Replies Last reply Reply Quote 2
              • travisdh1T
                travisdh1 @aaron-closed account
                last edited by

                @aaron said in I am thinking about getting into Security:

                @thwr oh man that's just cruel comparing SAM's starter guides to making someone install Gentoo. I have a hard time getting folks in the door for interviews, and we use Debian.

                I do wonder about he longevity of the position. This is something I'd outsource (and have) but credit unions do weird things and it may be viable. Would be cool to have the experience too.

                I have to ask what area of the country you're in? While I prefer CentOS, I'll happily work with Debian!

                1 Reply Last reply Reply Quote 0
                • thwrT
                  thwr @aaron-closed account
                  last edited by

                  @aaron said in I am thinking about getting into Security:

                  @thwr oh man that's just cruel comparing SAM's starter guides to making someone install Gentoo. I have a hard time getting folks in the door for interviews, and we use Debian.

                  I do wonder about he longevity of the position. This is something I'd outsource (and have) but credit unions do weird things and it may be viable. Would be cool to have the experience too.

                  We're using Debian / Ubuntu here mostly, but also some BSD. Gentoo is just used here as a great learning experience or for systems where I need very deep control, like special ARM boards etc.

                  1 Reply Last reply Reply Quote 2
                  • scottalanmillerS
                    scottalanmiller @Nic
                    last edited by

                    @Nic said in I am thinking about getting into Security:

                    You couldn't get a career with better job security at this point. IT folks with security chops are charging top dollar.

                    Have you actually seen this? I know a few that have been able to do that, but by and large most security people that I talk to are out of work. There don't seem to be many jobs.

                    Certainly some people do it and love it and do great with it, but my take on it is that the careers are few and far between and you'll struggle to find work if you want to stay in security.

                    Security as an experiential add on to systems administration is great, you can leverage it into better admin work and standing. But I have yet to meet a single security person making as much as systems admins, for example. Even in big time security companies.

                    It's become a mantra that these jobs are plentiful, but no one knows where they are or how to get one or knows anyone working in the space.

                    1 Reply Last reply Reply Quote 1
                    • scottalanmillerS
                      scottalanmiller @IRJ
                      last edited by

                      @IRJ said in I am thinking about getting into Security:

                      @thwr said in I am thinking about getting into Security:

                      Aside from learning Linux, I would think about how permanent this job is. They won't need a dedicated security guy for 40 years, expect you are working at a hoster or with 1000+ users maybe.

                      Well, I do work in banking. We end up paying for 2 or 3 pen tests a year as it is now.

                      that's not much to have an internal person doing it. Someone is going to run the math on that at some point.

                      1 Reply Last reply Reply Quote 1
                      • scottalanmillerS
                        scottalanmiller
                        last edited by

                        I think that this decision has to come down to... is this a career change that you want? If this is what you WANT to do, then it is a huge opportunity to build your resume and experience. If this is not something that you want, this could suck big time. it's more about you and your goals than about career options.

                        1 Reply Last reply Reply Quote 2
                        • 1
                        • 2
                        • 2 / 2
                        • First post
                          Last post