IT Certifications and Careers (Official Discussion Thread)

[Rice'N Beckford]

Started the cybersecurity analyst job yesterday and pretty much sat there with 2 other dudes watching Youtube vids while 2 suspicious emails came in from other countries and that was it. Its a crime to make this much $$ for not doing shyt

Gonna try to get on the monitoring team in a few months to mess around with the IDSs/IPSs

And my shift is avoids all traffic

 

[Macallik86]

Grab 5 books for $1, 10 books for $8 or 20 books for $15:

Packt is back with a bundle of ebooks and videos to get you certified! Study up for certifications in SSCP, Salesforce, Google Cloud, CompTIA, and more. Your purchase supports Child's Play on its mission to improve the lives of children through the power of play!!

Humble Book Bundle: Get Certified by Packt (pay what you want and help charity)

Definitely find reviews on the books you are interested in buying. I did some googling and a few of these newer books are rated 3.5 stars or better on Amazon but Packt published bookshave a reputation of poor editing or being hard to read.

 

[Scott Larock]

Yo, the riots thing is too much of a distraction from my studying, getting back to my CCNA training. I'm on book 2 learning about ACL right now.

I can't front IT is a lifestyle, I feel like I gotta tune out 95% of the world. Been too much into these social changes threads and I've slacked off...

I may need to block the coli with a application of I can't break this habit. Wasting too much time on pointless dumb stuff and the thing is I'm picking up the labs pretty quick, not too hard.

 

[Macallik86]

Yo, the riots thing is too much of a distraction from my studying, getting back to my CCNA training. I'm on book 2 learning about ACL right now.

I can't front IT is a lifestyle, I feel like I gotta tune out 95% of the world. Been too much into these social changes threads and I've slacked off...

I may need to block the coli with a application of I can't break this habit. Wasting too much time on pointless dumb stuff and the thing is I'm picking up the labs pretty quick, not too hard.

Have you tried Pomodoro Time Management? I was wasting mad time surfing the internet, but now I have more self-control at the crib than I did when I was on a work computer being monitored lol.

Basically you work for 25 minutes straight and then get 5 minutes to bullshyt.

 

[patscorpio]

Put your 2-3 years in, cert up and move on. There are people with bachelors/masters degrees making 45K. You have to be realistic.

this...i was making this much out of grad school at my first serious non contract non internship gig..actually less than that

 

[slikkp]

Don't waste your time with this.. the only ones you're probably gonna need to commit to memory are:

22, 23, 25, 53, 80/443, 161-162, 389, 445, 514, 587

as long as you know those you're good, half of that list is obsolete and if an application uses a specific port you'll find it in the documentation and you can always look it up.

Your time would be better spent learning how to figure out what application is communicating on what port.. learn how to use netstat.











On a different note:

SAA-C02 == Got
DVA-C01 == Next

Remember these too:

FTP = 20/21
TFTP = 69
POP3(email) = 110

 

[Slic Ric]

Completely burned out brehs, work Help Desk Analyst and just tired of the calls now, our profession really hasnt taken a step back since the virus, we actually work more.

 

[Majestic]

All the free courses are almost gone brehs.

 

[BaggerofTea]

Started the cybersecurity analyst job yesterday and pretty much sat there with 2 other dudes watching Youtube vids while 2 suspicious emails came in from other countries and that was it. Its a crime to make this much $$ for not doing shyt

Gonna try to get on the monitoring team in a few months to mess around with the IDSs/IPSs

And my shift is avoids all traffic

Nah you want to be in the action.

Traffic is good. Plus if your siem is good. You can probably threat hunt and find some baddies.

What SIEM do you guys use?

 

[BaggerofTea]

-Help desk job . I wouldnt take anything less than $50k. But it depends on exp and location.

If you want to do cybersec you will want to do the sec+ or CySA+. But, like Ive told nikkas in here before. Getting into the cyber is hard because experience is needed + certs + security clearances. People get lucky but google and you’ll see how cacs on reddit ask the question 1000s of times, “How do I get into cybersecurity”? And these guys will have cybersecurity degrees, masters and certs and still be working help desk

You dont need a security cleance unless you are working for a government contractor.

They will overlook experience if the knowledge and attitude is there.

Certs are hit or miss. A lot of folks (senior people) disregard certs unless its like an OSCP

 

[BaggerofTea]

Damn I thought I would be making more then that but I guess it's a start. I make 45k now and I might take that salary south so it stretches. How do I go about getting the clearances? If this don't work out man I hate to be pessimistic but I'm 26 and sh* need to change in my life

Apply for any job that says Cyber Security Operations Command (SOC)

You can get in with a fraud or threat intel team as well

 

[Mirin4rmfar]

I am starting Firewall training this month . I can't wait, everything is coming together. Still dont like my hours and on calls but the sacrifice will be worth it in the end.

 

[Rice'N Beckford]

Nah you want to be in the action.

Traffic is good. Plus if your siem is good. You can probably threat hunt and find some baddies.

What SIEM do you guys use?

we use splunk. And its the govt. we dealing more with emails, domain blocks and spillages. I dont have any accounts made yet for about another week or two

 

[BaggerofTea]

we use splunk. And its the govt. we dealing more with emails, domain blocks and spillages. I dont have any accounts made yet for about another week or two

Nice, dig into it. Splunk is powerful as hell.

Are you guys using the front end dashboard interface or do they allow you to run ad hoc searches against the splunk indexes?

 

[GollyImGully]

For those with infra in aws how does your company handle different environments (prod, staging, dev etc)?

do you make an account per environment?

we are looking to move from an account per environment to each internal service having its own account for each tier. For example lets say you have a service called “mario” you will have an aws account like mario-prod, mario-dev etc.

Basically a lot of fukking accounts will be made this best practice according to an aws rep