Any IT Security Heads here?
- Thread starter HellBoy
- Start date
cool, be best prepared to slay that beast. the Sybex Official ISC2 practice tests were helpful when I took and passed it.
Standard Desktop Configuration. Basically create OS images for workstations and servers on network. Lil more to it but thats the gist of it.
That's cool. I'd imagine you'd need to be familiar with NIST guidelines for government contracts right? Do you work with Windows and Linux?
Mostly Windows for me. I personally suck at Linux but my coworkers handle that area. NIST and Dod 8750 for hiring standards.
Google given away the GOOGLE IT SPECIALIZATION CERT FOR FREE on Coursera.
https://www.coursera.org/courses?languages=en&query=google+it+support+professional+certificate
Just apply for the scholarship. It's like 6 courses to get the cert and it's the equivalent of A+, NET+, Security + and a couple more I can't remember right now.
https://www.coursera.org/courses?languages=en&query=google+it+support+professional+certificate
Just apply for the scholarship. It's like 6 courses to get the cert and it's the equivalent of A+, NET+, Security + and a couple more I can't remember right now.
A lot of good information here but I have additional questions.
I'm retiring soon and looking to start a second career and I'm interested in IT security. I'll be comfortable in my retirement, but I'm looking for ways to finance travel and additional pleasures. I only completed 2 years of college before starting my career a long time ago. My current passion is to go back back and take some classes in African American History, just for my benefit.
I'm looking for something that isn't 9 to 5, 5 days a week. Something I can work at leisurely. Is that possible in IT security?
What is the bare minimum training I can start with and find that type of employment? If I took a year of training, would I be able to find employment? I'm planning to take at least a year off from work.
I plan to continue my education but want to know what I would need to start. What would the starting pay be at that point?
I posted in this thread when it first started but I had to bump it b/c of the valuable information it contains and say thanks to all those that contributed. This IT security shit is real and at least for me life changing! I graduated in December with a Infosec degree and have already doubled the salary I was making back when I made those posts in 2016. No certs yet, no real experience, just the degree. I did do an internship at a pretty well known IT company's SOC but I really didn't learn shit and it was only 3 months. That shit looks good on a resume tho lol and got my foot in the IT security door.
I also learned that there is opportunity in all areas of security. If you are into the technical side, most of that has been covered here (networking, architecture, development) and there are so many good paying jobs there. I know the jobs aren't as sexy but for those not interested in having "hands on the keyboard" as they say, there is still opportunity in security as long as you at least understand the technical stuff. IT security governance, risk and compliance jobs and security consulting jobs are out there that pay very well. Mainly deal with creating security control policies for protecting data such as NIST standards and security training programs for employees, etc. After a few years you could probably shoot for the CISSP, CRISC, CISA as far as certs go to get more money.
If you are pursuing a job in the field, don't get discouraged. Keep putting up shots and one will fall. I applied to at least 200 internships/jobs over the last two years.
I also learned that there is opportunity in all areas of security. If you are into the technical side, most of that has been covered here (networking, architecture, development) and there are so many good paying jobs there. I know the jobs aren't as sexy but for those not interested in having "hands on the keyboard" as they say, there is still opportunity in security as long as you at least understand the technical stuff. IT security governance, risk and compliance jobs and security consulting jobs are out there that pay very well. Mainly deal with creating security control policies for protecting data such as NIST standards and security training programs for employees, etc. After a few years you could probably shoot for the CISSP, CRISC, CISA as far as certs go to get more money.
If you are pursuing a job in the field, don't get discouraged. Keep putting up shots and one will fall. I applied to at least 200 internships/jobs over the last two years.
CISSP For Dummies, 6th Edition by Lawrence C. Miller, Peter H. Gregory
https://coderprog.com/cissp-dummies-6th/
https://coderprog.com/cissp-dummies-6th/
I got my Sec+ a couple weeks ago. Next up is the CEH.
how hard was the test? what you study with?
Old Security+ just expired at the end of June...Network+ expires at the end of august...im going to take that test because from what im hearing, the comptia exams are about to get harder...
it wasnt as hard as I expected. I did a class that my job provided and then about 2 weeks of independent study. Mostly just taking the practice tests. I expect the CEH will be much harder.
Does the CISSP hold more weight as a better certification than Security + or does it make sense to just get both of them?
Yeah I know, I'm taking 501 soon, failed Nplus a while back
That's really good your job gave you that training.
CISSP is high level but really need the experience to be taken seriously. Don't make sense to be a newbie, get 3 to 5 years in first.
Sec+ is like a high school diploma whereas the CISSP is your Masters degree.
Comptia Security ➕
Comptia Server ➕
Comptia Linux ➕
LPIC 1 Certified Linux Administrator
SUSE Certified Linux Administrator
ArcSight Security Admin and analyst
Taking the CISSP next month.
Cyber security Federal government
Comptia Server ➕
Comptia Linux ➕
LPIC 1 Certified Linux Administrator
SUSE Certified Linux Administrator
ArcSight Security Admin and analyst
Taking the CISSP next month.
Cyber security Federal government
My bad. I was thinking SSCP when I said CISSP since I don't have any security based certifications yet. I'm currently in the medical IT field but definitely want to expand my knowledge base and increase my job snatching capability. What would y'all say is the recommended path for someone to go about the security side of IT?
About to get a Splunk cert next month too! 
Two more classes to go!
Two more classes to go!
My answers might be a little different from the others.
Splunk certification - I'm seeing Splunk implemented in SOCs at just about every government agency I've been at the past few years. I took the Splunk Power User certification for free because my company at the time had a partnership with Splunk.
AWS Certified Security - This is AWS latest cert. A security cert from the biggest public cloud provider. Cheap cost too ($300).
This thread has jewels. I just got offered a GS 12 position in Cyber Security. Perfect timing
Congrats sir. Parlay that secret, to top and beyond.
Thanks Man. Just waiting on the last parts of whatever they're doing. Background is good. Top Secret was archived. Should almost be complete
Red Hat RHCSA/RHCSE Exam Ebook By Tecmint
https://www.dropbox.com/s/dqskt82y4...ut-Password-Watermark-by-TecMint.com.pdf?dl=0
*Legit
https://www.dropbox.com/s/dqskt82y4...ut-Password-Watermark-by-TecMint.com.pdf?dl=0
*Legit
love this thread
Have you gone through Professor Messer's videos on 501?
If you learn all the tools in Kali, its a hell of a first step.
I took a class a few weeks ago for the CASP and have a free voucher for the test. Anyone taken it that can tell me what to look out for?
Props, I know that Sec+ is tempting because it holds weight with the government but that CISSP is way more valuable.
I got the Sec+ back in June. The CISSP is def the major one and I'm building up to it. Just knocking down these other ones along the way. Long as they paying for the classes/test, imma get all I can.
And that CISSP exam is $700. Betta be well prepared for that shit.
The CEH is a much longer and harder exam.