GF wants to get into Cyber Security
Discussion
But she doesnt know where to start!! Are there any people in this field who can say what courses she should take? I know it's a wide field. Is there a single 'accreditation' (e.g. CIPD for HR etc.) or does it vary by vendor/ cloud?
Thanks so much, I know this is a bit of an open ended question.
Thanks so much, I know this is a bit of an open ended question.
CISP - Certified information systems security professional
Its huge varying domain, she needs to narrow down what she wants to do
Chatgpt came up with these 10 ideas in 5 seconds
Here’s a list of 10 areas where someone in cybersecurity could work:
1. **Sales** – Selling cybersecurity products and solutions.
2. **Engineering (Installation & Configuration)** – Setting up and managing cybersecurity tools and infrastructure.
3. **Penetration Testing (Pen Testing)** – Simulating attacks to identify security vulnerabilities.
4. **Policy & Standards Development** – Creating and enforcing security policies and compliance standards.
5. **Audit & Compliance** – Ensuring that security systems and processes meet required regulations and standards.
6. **Threat Detection & Monitoring** – Continuously monitoring systems for signs of cyber threats.
7. **Incident Response** – Reacting to and managing security breaches or cyber incidents.
8. **Forensics & Investigation** – Analyzing cyber incidents to determine the cause and impact.
9. **Risk Management** – Identifying and mitigating security risks to business operations.
10. **Security Awareness & Training** – Educating employees and users on best security practices and policies.
Most mid to large size companies will have someone that does 4, and a few people that do 2, the rest is probably outsourced.
Its huge varying domain, she needs to narrow down what she wants to do
Chatgpt came up with these 10 ideas in 5 seconds
Here’s a list of 10 areas where someone in cybersecurity could work:
1. **Sales** – Selling cybersecurity products and solutions.
2. **Engineering (Installation & Configuration)** – Setting up and managing cybersecurity tools and infrastructure.
3. **Penetration Testing (Pen Testing)** – Simulating attacks to identify security vulnerabilities.
4. **Policy & Standards Development** – Creating and enforcing security policies and compliance standards.
5. **Audit & Compliance** – Ensuring that security systems and processes meet required regulations and standards.
6. **Threat Detection & Monitoring** – Continuously monitoring systems for signs of cyber threats.
7. **Incident Response** – Reacting to and managing security breaches or cyber incidents.
8. **Forensics & Investigation** – Analyzing cyber incidents to determine the cause and impact.
9. **Risk Management** – Identifying and mitigating security risks to business operations.
10. **Security Awareness & Training** – Educating employees and users on best security practices and policies.
Most mid to large size companies will have someone that does 4, and a few people that do 2, the rest is probably outsourced.
CISSP has fairly significant knowledge and experience requirements.
I routinely recommend people do Security+ regardless of what they want to do in the industry, there are f
king legions of people in the industry who don't actually know what they are doing in detail. Security+ is fairly introductory but wide ranging.
Repeat for the Azure / AWS intro courses so that you have an overview only (eg regardless of where you end up, knowing a tiny bit about what you are working in support of will never hurt).
I routinely recommend people do Security+ regardless of what they want to do in the industry, there are f
king legions of people in the industry who don't actually know what they are doing in detail. Security+ is fairly introductory but wide ranging.Repeat for the Azure / AWS intro courses so that you have an overview only (eg regardless of where you end up, knowing a tiny bit about what you are working in support of will never hurt).
https://careers.uk.leonardo.com/gb/en/cyber-landin...
This is the company. It means nothing to me with the courses they talk about! But my ex colleague raves about them.
This is the company. It means nothing to me with the courses they talk about! But my ex colleague raves about them.
Cyber Security isn’t really narrowing it down too much.
It could mean learning how to be a penetration tester, could be working for a security vendor, a Security Operation Centre analyst, or maybe go for information security instead?
The latter is easier to pick up as a non-techie and still interesting.
It could mean learning how to be a penetration tester, could be working for a security vendor, a Security Operation Centre analyst, or maybe go for information security instead?
The latter is easier to pick up as a non-techie and still interesting.
All good advice (cept CISSP- far to intense to start with).
This guy - Gerald Auger is great and seems dedicated to both helping people get into cyber security, as well as giving those of us already in it, lots of great support.
He does a 1 hr daily show walking through todays cyber sec news as well as interviews, courses etc (i did the GRC one for a wheeze and was v impressed)
https://www.youtube.com/live/_f5dCdu1stE?si=xNmBVS...
If she is serious she needs to be aware of daily threat changes, new vulnerabilities etc. Be also does specific videos on how to uae your transferable skills to go from accounts to cyber for example.
Also - try local colleges and universities as they need cyber trainees atm.
This guy - Gerald Auger is great and seems dedicated to both helping people get into cyber security, as well as giving those of us already in it, lots of great support.
He does a 1 hr daily show walking through todays cyber sec news as well as interviews, courses etc (i did the GRC one for a wheeze and was v impressed)
https://www.youtube.com/live/_f5dCdu1stE?si=xNmBVS...
If she is serious she needs to be aware of daily threat changes, new vulnerabilities etc. Be also does specific videos on how to uae your transferable skills to go from accounts to cyber for example.
Also - try local colleges and universities as they need cyber trainees atm.
Edited by Chimune on Tuesday 1st October 08:01
BBC News - Could you switch careers into cyber-security?
https://www.bbc.com/news/articles/c1m0ylerjevo
https://www.bbc.com/news/articles/c1m0ylerjevo
Gassing Station | Jobs & Employment Matters | Top of Page | What's New | My Stuff