IT Certifications and Careers (Official Discussion Thread)
- Thread starter fendi_mane
- Start date
David_TheMan
Banned
Federal is about hitting check marks.
Again give yourself a leg up by getting used to DoD 8570
DoD Approved 8570 Baseline Certifications
You get your Sec+ or usually if they like you they'll bring you in and give you 6 months to get it, but try to get certs that fill out the most boxes. This makes your very attractive for Civilian and Contractor positions in the federal scape.
That said good luck to you moving forward man, if you have any questions let me know and I'll post on here or pm you if you want ot be in private.
Rep+
This is good to know, I have most of the basic CompTIA certs, and VMware.
I see I need to knock out the Cisco and high level CompTIA security.
David_TheMan
Banned
There is no best way objectively.
There is the best way for you, so just listen to, read, or do whatever is the best method for you to gain the knowledge and mastery over the content in total. Don't look more to study for the test, but to learn and understand throughly the content of the test, because it benefits you in the long run when you start to build on it.
Thats just my opinion though, but do whats best for you
Lmfao you better be ready, the only companies which will allow you to learn has you go know nothing about securityThat depends... Are we talking about my resume or the truth?
According to my resume; I'm the man. 2+ years in various security roles ranging from Incident Response to Application Security. I can talk the talk with the best of 'em doe
Does anyone know how to get into technical writing?
Julius Skrrvin
I be winkin' through the scope
Cyber attack modeling & simulation is the next wave. Get in before it's too late
Pentesting's been around since the late 80s. Nothing next about it. And to be honest, it's only really useful for a relatively mature information security program to test and validate controls or for PCI bullshyt
and most companies are not that mature. Tons of people trying their hardest to be in pentest too. Appsec has a bigger expertise shortage imo. And even blue team stuff centered around anomaly detection and higher level engineering (aka not run of the mill SOC).
Pentesting's been around since the late 80s. Nothing next about it. And to be honest, it's only really useful for a relatively mature information security program to test and validate controls or for PCI bullshyt
Appsec has a bigger expertise shortage imo. And even blue team stuff centered around anomaly detection and higher level engineering (aka not run of the mill SOC).
Edit: Technically, Appsec is a subset of pen testing. Blue team will always have more jobs due to the nature of the work. Personally, I don't like Incident Response. Rather do cloud security.
Source:
Breach and Attack Simulation Versus Pen Testing and Red Teaming
Harness the Hacker With Breach and Attack Simulation - SANS Institute
Last edited:
Julius Skrrvin
I be winkin' through the scope
Edit: Technically, Appsec is a subset of pen testing. Blue team will always have more jobs due to the nature of the work. Personally, I don't like Incident Response. Rather do cloud security.
No. No it isn't. Appsec is simply the process of improving the security of applications via software, hardware and procedural methods. You may utilize red team processes like web app testing to validate and audit your controls, source code review, or design review... But appsec is not a subset of pentesting by definition. For example, a WAF is an application security device. Do you use it for pentesting?
As for the second bold.... IR/SOC in the cloud is the same as IR anywhere, the only difference is that you have to be aware of platform specific security controls (setting up logging in a large environment has it's nuances too, but that's a whole different conversation).
As for the whole breach simulation shyt, that's just a pentest with a different scope, which has been around forever. There is no functional difference in the TTPs used. Maybe there is on the red team side operationally, but yeah... That's just a pentest.
I was referring to your original post. You claimed AppSec has a bigger shortage; yet, in that context, AppSec (Manual App Testing) falls under pen testing. That is why they have the GWAPT certification. Which is why AppSec positions tend to request the GWAPT. Now, does the entire field of AppSec fall under Pen Testing? Of course not, but under the context, I was correct - AppSec analyst managing WAFs?! Where they do that at? AppSec analyst use Scanners, manually review source code, and test for vulnerabilities.
Why would I do cloud IR but be opposed to on-prem IR?? I was referring to POC's/Architect aspect of cloud security.
Seems like miscommunication. I was speaking from my exp. as an AppSec Analyst. You on that SOC/IR ish
Breach simulation gon be lit. idc if its the same shyt with a different name
Last edited:
Julius Skrrvin
I be winkin' through the scope
I was referring to your original post. You claimed AppSec has a bigger shortage; yet, in that context, AppSec (Manual App Testing) falls under pen testing. That is why they have the GWAPT certification. Which is why AppSec positions tend to request the GWAPT. Now, does the entire field of AppSec fall under Pen Testing? Of course not, but under the context, I was correct - AppSec analyst managing WAFs?! Where they do that at? AppSec analyst use Scanners, manually review source code, and test for vulnerabilities.
Why would I do cloud IR but be opposed to on-prem IR?? I was referring to POC's/Architect aspect of cloud security.
Seems like miscommunication. I was speaking from my exp. as an AppSec Analyst. You on that SOC/IR ish
Breach simulation gon be lit. idc if its the same shyt with a different name
None of that invalidates that appsec isn't a subset of penetration testing though
this is a wholly semantic argument. I will agree with you that appsec positions tend to draw pretty much on web dev, web app pentesting, and secure coding practices though. My larger point was that even web app pen testing and network pentesting are pretty different. They have some overlap, but the TTPs and core knowledge reqs aren't the same 
let's keep it real, when people talk about adversary emulation most of the time they mean net pentesting... And you know it If you mean architecting cloud security systems, then say so.
I'm not only in SOC and IR but that's a whole different story. At this point I'm a purple teamer doing everything from creating threat hunting tools to app assessments to IDAM and I'm getting burnt out
what is the route you take if you go to college for IT but wanna go into the security field like bdizzle did? I mean for argument sake if you got fortunate with being given money to go to college and don't have to do the cert route
Computer Information Systems
Gonna unnecesarily waste a lot of time and money on tuition though.