Anyone work in Cyber security ?

[Bounce]

I have a keen interest in cyber security, but have no experience or qualifications in this area.

I’d be interested to hear from people who are in the cyber security industry.



Iv seen lots of job adverts asking for
CISSP qualification
comptia a+
Iso 27001

How easy is it to get into? And what is the day to day role like?

 

[Bounce]

Do you have an IT background already?

No my background is in Compliance (H&S, ISO's, Fleet Management)

Disclaimer; I'm not in cyber security, that's a whole field though rather than a specific role so asking "what is the day to day role like" is kinda open and variable.

For example, one guy working as a consultant at a tech firm I was at left for a security role at a big-name consultancy (he didn't have any security qualifications at all just consultancy experience), he'd go to client sites and run a bunch of scripts and send data to some third party firm and found it all rather boring.

I remember some IT guy at one firm moving to a new "security analyst" role and a manager becoming the head of IT security (which was a tiny 2-3 person team), they did some pen testing I believe, not sure if he had any certificates or not but it was an internal move.

It would probably be better if you were to state what you do now and what qualifications you have already... for example it could be pointless someone suggesting an MSc course if you don't have a relevant BSc/BEng etc. Likewise, if you don't actually work in IT right now and have zero experience then your prospects might be rather different to say some networking specialist looking to switch roles.

As above I'm a Compliance Manager responsible for H&S,ISO Accreditations, Fleet Management , I have two a levels in IT, which I did about 10 years ago now, I don't want to go spend time out of work and go to University. Is there anyway into the industry as a junior and what qualifications would be benefitable to do?

 

[Bounce]

I dont work in cyber security at the moment but I do taking part in security projects in my job and I have a few cyber security certs.

As cyber security is so broad such as defence, ethical hacking, on-prem, cloud security, etc. You need to decide where you want to be.

Understand the basics of security and get a certification such as Comptia Sec+ (doesn't seem useful in the UK) or Cisco Certified CyberOps Associate, maybe even an cloud security cert such as the Microsoft Security, Compliance, and Identity Fundamentals (SC-900). The CyberOps Associate covers abit more than just cyber security but an overall picture such as networking, DevOps, info sec etc. You can buy the materials, take the exam and see from there. Self study in your spare time, dont bother attending courses or anything.

CISSP is more for information management than cyber security and there is an requirement for taking the exam which is an high level.

Work on a few projects off the internet https://www.techapprise.com/cybersecurity/hacking-learning-websites/ and build a portfolio. Combined with an basic cyber security cert, this will help you get your foot in the door which you start applying for jobs.

Keep in mind, some JD's have crazy requirements, even for juniors. Ignore them.

Thanks Malachi, so first off best going on a The CyberOps Associate course? , and go from there.