I want to start my career in cybersecurity, what would be the best way to do so?
It's a flooding market.
>>103290234flooded*
Buy the boots.
>>103290234I don't mind, I'm will graduate with a stupid fratboy business degree in june which isn't better. I'd rather work in cybersecurity so please help me out, this is what I wanna do
>>103290264lol I want it to be hard, I want it to be challenging and I want to feel realized, that's the whole point, easy means boring
>>103290286I mean, really all you need are the certifications.Get your CompTIA Security+, then get your CISSP.Also, when you get the CompTIA Security, try to apply for roles as an IT Auditor, before getting your CISSP.
>>103290328Thank you so much, I'll keep it in mind. I'm currently learning Python by myself, I don't know how good of an approach what I'm doing is but I just watch videos on YouTube and ask ChatGPT to design problems for me.Should I focus on TryHackMe and HackTheBox instead?
>>103290328OP again, if I lack the 5 years of working experience (which I obviously do), would you still recommend taking the exam so I become an associate of ISC2?
>>103290307Something tells me that negress is doing the bare minimum (if that), which is why she thinks it's easy. Someone like that can fly under the radar until something catastrophic happens. Then someone will take the blame, maybe it will be her (it won't). I think the challenge comes from being proactive. The point is to prevent attacks, not simply react to them.
>>103290229why cybersecurity? isn't that a thing of the past.
>>103290229just do it, there's no other way to start just start hacking bro
>>103290656that's like telling an aeronautic engineer to just start building rockets
>>103290229The laziest retards are the ones that want to specialize instead of generalize.I got into developing an EDR solution because my company pivoted into it while I was working there. Now I can sell myself as being a specialist in multiple fields if I were to ever leave this company.
>>103290648i love puzzles and mental challenges so i think it really suits me, plus i like computers, always did since i was a little kid, and what fascinated me the most never changed, which was hacking, it really feels like magic to me i don't know how to describe it, but i love it, and i want to be good at it, really good
>>103290623seems like it lol she's most likely not doing anything except from scrolling on tiktok while at work
>>103290677>mental challengesYou're probably not going to receive that with cybersecurity. The best you'll get is changing the boss's password every few months.
>>103290713I think I will as long as I continue practicing by myself, if I can do that while getting paid for it then where's the issue?
>>103290728Maybe, i'm not entirely sure; Even though i'm heading in that field myself. Right after I finish my security+ and other shit if I need them as well.
>>103290264Whats with the loose strands of hair stuck to the front of her head?
>>103290461TryHackMe has an Advent of Cyber event each December. It's a good overview of many different areas of Cybersecurity. You can also go back and do previous year's AoCyber events. It doesn't go very far into depth on any topic, that's what the rest of the site is for, but it is a good, low investment way of getting a broad overview of the industry. If you get stuck on anything, there are plenty of walk throughs for each day on YT. THM often even links to them from the day's post but you really should try to work through that day on your own and only go to the walk through if you get stuck. The free tier is enough for you to be able to do all of the Advent of Cyber challenges but it can be helpful to have a basic subscription so you can use the web based attack box instead of needing to set up your own VM and configure the VPN.
>>103290859That's really interesting; I'll try it out. Thank you so much
>>103290671>I know it all because I developed some shitty toolLMAO you are the stereotypical arrogant dev
>>103290229Cybersecurity is a meme field filled with all the retards who were too fucking stupid to become good programmers so they ended up there..Just fake a bunch of certificate on your linkedin.During the interview talk about rotating passwords, less permission model and automated compliance.Once you get the job, just buy random off the shelf cybersecurity "tools" and force your developers to integrate them at great cost and time. The more expensive and annoying the tool you buy, the better you look with management.Enjoy the 200k per year.
>>103291301Sounds sweet yeah lets go man
>>103290229The biggest problem you'll face here is that a lot of cybersecurity jobs aren't entry level and the ones that are grueling bullshit like SOC analyst, aka you go through a bunch of logs and write reports on dumb shit and maybe email people to see if it's really them doing something and not someone who hacked their account or whateverIf you really want to work in that field you should start in IT and then pivot when you get experience, otherwise you'll just be lost in the sea of other people with low or no qualifications trying to get a job in a meme fieldIt's a really frustrating field honestly, I feel like the entire thing is a massive grift to make companies waste money on software/services/resources they don't need and only serve to slow doing regular business processes while not adding much more security. One of the biggest flaws in the field is that people keep making it out to be a field where you don't need any kind of technical knowledge which causes a ton of roasties to get involved and make a mess of things.
>>103291402But why would I need a CS degree for that? There's not much to get from one of those that I can't learn by myself I reckon, I'd rather learn programming and other things by myself instead of wasting 4 years of my life
>>103291661I wouldn't say you need a CS degree but having something is better than nothing because there's an ungodly number of people trying to break into the field Even though employers are desperate for cybersecurity staff they also don't want to gamble on someone with no exercise and no qualifications or maybe only security+ at most
>>103291770It fucking sucks because I do have a degree, but its a double degree in Business Administration and Marketing, which has nothing to do with it. I will do my bachelor's final project on something related to cybersecurity, but fuck man, its not the same. Im still going to get my certs and projects and hopefully some company will give me a chance
>>103290234It is but then everyone bitches they have no people. Tryhackme, hackthebox, proving grounds. Sec+ blah blah. Blueteam for lack of a better word is going to be different but to me that was the easy shit to learn. I can teach any monkey to look at the glass. Being curious about it and actually popping open google and looking up and learning about what you are looking at is the important part. Then you just kinda keep going from there.
>>103291848So I just gotta improvise?
>>103291815That fine, it's not ideal but you can still leverage your degree if you get creative with it Lots of people trying to get into cybersecurity have no degree at all so there's that
>>103291971Yes and no. I started just banging my head on tryhackme until I started rooting boxes. I guess a better question is what do you want to do? Cyber is a big field from compliance to offensive testing.
>>103292116I'll have to properly check everything out first before trying to niche down, I guess. Watch a couple videos, read, and decide what really interests me the most. I don't think I should take it lightly if I plan to spend 40 years working on that
>>103291986I guess it's still not completely useless, or that's what I will tell myself so i can cope better
>>103292301Do tryhackme first. Learn more. Sucks the cyber thread is trash, taught me a lot when it was good and I'm by no means a master. Bandit over the wire is another good one. You'll have to learn more about operating systems too. It will seem daunting, because it is but dont freak out and just keep learning.
>>103292872Yes, I think I'm going to start toying with TryHackMe for about 4-5-6 hours a day and see where all this takes me. I really hope I make it.
>>103292309In terms of not getting immediately filtered through HR its not useless, but its not going to do anything for a hiring manager. It shows you are able to learn something over a long period of time which is good. But you could have 7 degrees and still brick the whole system on your first day. People without technical experience are simply more risky than someone who has been connecting things together for a couple years and hasn't blown anything up. Security jobs are typically not entry level jobs. Experience, education and a clearance are what get you there. If I were you I would look into entry level networking jobs. SKIP HELPDESK. Even something like structured cabling, alarm tech or literally being a comcast guy for a couple years will vastly improve your chances but they are very constructiony. However i know alot of guys that hire people who "paid their dues" so to speak. The ideal candidate for security is a networking engineer/sys admin looking to keep moving up. Security does not make any money for a company but serves as an insurance policy to complete catastrophe. In that sense they take up space and budget for 99% of their career but nobody can run the risk of you missing something integral. It's a strange job.
>>103291402>One of the biggest flaws in the field is that people keep making it out to be a field where you don't need any kind of technical knowledge which causes a ton of roasties to get involved and make a mess of things.Funny that Mr. Robot even did a scene about this.https://www.youtube.com/watch?v=4jgbhxqypw8
>>103294082yep I've seen almost this exact thing play out minus someone getting escorted out of a meeting>long reports tossed aside at the start of a meeting>people fumbling the details and getting interrupted mid explanation>more technical people having to take over for the less technical ones in the middle of the meetingthe sad part is it's usually the management who asks for reports that end up being so bloated with all the details that they asked for that they end up not wanting the report anywayI never watched this show but I assume that's why the guy swapped the folder he had, the first one was probably full of fluff that the girl prepared while the second one is probably technical and gets to the point
>>103294385>I assume that's why the guy swapped the folderSpoilers: that's a reasonable assumption based on only seeing that scene on its own but it turns out to be somewhat the opposite. Hacker boy was upset with how the girl was treated so he switched packets to one that sent the client on a wild goose chase that resulted in the CEO guy who was rude to the girl being framed and sent to prison. The guy who the CEO whispers to noticed the switch but never warns the CEO about it as he has his own agenda that isn't in the company's best interest. As an aside, tryhackme has a Mr. Robot module that's based on the show. For something based on a tv show, it manages to actually be pretty good.
>>103290328Did someone say CISSP?https://www.youtube.com/watch?v=whEWE6WC1Ew
>>103294549interesting, that's another thing that's kinda funny about this field it's not that difficult to alter or withhold information because there's so much of it and not many people will care enough to check after you unless you give them a reason to
>>103290229Hack the mainframe. And then get some rollerblades.
>>103290461you're not gonna make it at this point. all the 1337 h4x0r5 were hacking when they were 4 years old. its over just be a chad office worker with better job security using your business degree, why do you even want to be a tech nerd?
>>103290229theres 3 ways>hacker / technicalyou have to fully immerse yourself for years, get the oscp cert, network, attend ctf competitions, write blogs in the hope that someone will poach you. You cannot do this unless you have a high iq and autism. You would not be asking this question of you were on this path.>the soc slaveshould be able to get in with a degree of IT from a technical college. downside is shiftwork. it isn't glorious but I've heard it's boring. if you want to work nights its alright.>Accountant maxDo an accounting degree get into auditing get into cybersec auditingcybersecurity being in demand is a joke so big 4 accounting and SOC companies can bring in jeets.
>>103297317>can bring in jeetsAre there any easy jobs that's not ruined by these parasites? The US National Debt didn't start to climb until around 1996 when big US companies started to move south into Mexico for cheap labor. Everything was great until our jobs started being moved and outsourced.
