Cyber security for beginners - book or free/cheap course
Discussion
Baldchap said:
Where are you at right now and what do you actually want? Everyone wants to pen test, nobody wants to look at log files. Without knowing your current situation it's impossible to advise.
I fear you might be making the assumption the OP knows what a pen tester is and that log files even exist. The OP also stated they want to get an understanding from the risk & underwriting point of view.How to get started... Hmmm... Good question. Have a read of this:
https://www.ncsc.gov.uk/information/how-cyber-atta...
BTW - It's also worth understanding who the NCSC is and what they do.
I'm of the opinion you need to understand from several points of view. Not only do you need to know how to defend, you also need to understand what you're defending against and the 'anatomy' of an attack.
Thing is, a lot of it revolves around curiosity, thinking 'outside the box' and not following instructions. Which is how hackers work:
- What if I put this SQL statement into the name field on a form.
- What if I mash the keyboard at boot-up?
- I can see a pattern in those URLs, what if I...
There's also the type of hacker to consider and their motivation, ranging from "Script kiddie" (often peaking in school holidays), through to organised crime and Nation State attacks.
Get onto YouTube, watch some presentations (there are plenty on there) which go through how previous hacks have been discovered and how things were resolved (often it's not pretty!!). Have a look on the NCSC site and hit google to see if SANS have some free introduction / beginner presentations or courses. Get yourself an overview of MITRE ATT&CK and do some reading on some of the key terms / buzzwords, such as TI (Threat Intel), TTP (Tactics, Techniques & Procedures), IOCs (Indicators of Compromise), what is a SIEM... How to harden systems... Etc...
Hopefully, there are enough 'buzz words' and pointers there to get started. I'm sure others will be along shortly with some links.
HTH
M
camel_landy said:
Baldchap said:
Where are you at right now and what do you actually want? Everyone wants to pen test, nobody wants to look at log files. Without knowing your current situation it's impossible to advise.
I fear you might be making the assumption the OP knows what a pen tester is and that log files even exist. The OP also stated they want to get an understanding from the risk & underwriting point of view.How to get started... Hmmm... Good question. Have a read of this:
https://www.ncsc.gov.uk/information/how-cyber-atta...
BTW - It's also worth understanding who the NCSC is and what they do.
I'm of the opinion you need to understand from several points of view. Not only do you need to know how to defend, you also need to understand what you're defending against and the 'anatomy' of an attack.
Thing is, a lot of it revolves around curiosity, thinking 'outside the box' and not following instructions. Which is how hackers work:
- What if I put this SQL statement into the name field on a form.
- What if I mash the keyboard at boot-up?
- I can see a pattern in those URLs, what if I...
There's also the type of hacker to consider and their motivation, ranging from "Script kiddie" (often peaking in school holidays), through to organised crime and Nation State attacks.
Get onto YouTube, watch some presentations (there are plenty on there) which go through how previous hacks have been discovered and how things were resolved (often it's not pretty!!). Have a look on the NCSC site and hit google to see if SANS have some free introduction / beginner presentations or courses. Get yourself an overview of MITRE ATT&CK and do some reading on some of the key terms / buzzwords, such as TI (Threat Intel), TTP (Tactics, Techniques & Procedures), IOCs (Indicators of Compromise), what is a SIEM... How to harden systems... Etc...
Hopefully, there are enough 'buzz words' and pointers there to get started. I'm sure others will be along shortly with some links.
HTH
M
I have a bit of an understanding as have an interest in this area. Given the scope, I just don't know where to start. Your post is useful so appreciate it.
There is an OU introductory course here: https://www.open.edu/openlearn/science-maths-techn...
At a basic level.
Else you are looking at things like Comptia or similar
Long term - look at things like CISSP
There is also a certification frameworks/mapping tool published by the UK Cyber Security council here: https://www.ukcybersecuritycouncil.org.uk/careers-...
This can be used to give a gauge on what certifications/courses to aim for.
Note that when I checked there were a few errors/howlers in there (v. senior courses listed as entry level & vice versa) which I have raised with the awarding bodies- but nonetheless it can be a useful tool
At a basic level.
Else you are looking at things like Comptia or similar
Long term - look at things like CISSP
There is also a certification frameworks/mapping tool published by the UK Cyber Security council here: https://www.ukcybersecuritycouncil.org.uk/careers-...
This can be used to give a gauge on what certifications/courses to aim for.
Note that when I checked there were a few errors/howlers in there (v. senior courses listed as entry level & vice versa) which I have raised with the awarding bodies- but nonetheless it can be a useful tool
heisthegaffer said:
Hi all
I'm keen to learn more about cyber security so can anyone recommend books, YouTube videos or free/cheap courses to give a good overview.
Reason I want to learn more is a career in Cyber Insurance Underwriting and Risk Management.
Thanks
I would suggest reading this book it's the principles which should give you a good overall understanding without being overly technical. This will provide insights into the many different areas and how they all come together.I'm keen to learn more about cyber security so can anyone recommend books, YouTube videos or free/cheap courses to give a good overview.
Reason I want to learn more is a career in Cyber Insurance Underwriting and Risk Management.
Thanks
Book: https://www.amazon.co.uk/Information-Security-Mana...
I've done the course through QA and can confirm it's great for a beginner: https://www.bcs.org/qualifications-and-certificati...
Out of curiosity, are you already in the insurance industry? I know several senior underwriters in this space and whenever hiring, they tend to go within the network i.e. underwriters already (not necessarily Cyber) or brokers. I have been approached regarding Cyber underwriting roles and whilst no technical qualifications, it was due to my experience in the market that led to interviews. Also worth noting that if you do not have industry experience, you may well be looking to go in as a UA (tends to go Underwriting Assistant, Assistant Underwriter, Underwriter and beyond), rather than fully fledged underwriter straight off the bat.
From purely a "what's most useful for a recruiting manager to see" perspective, I'd say that in insurance (broking with the larger alphabets included), the CISM/CISSP are looked at extremely favourably. An underwriter or broker who knows the lingo and can speak the technical language that's required is extremely valuable. I know that some companies will actively sponsor these qualifications, so you may wish to consider a beginner's course to get a flavour and then look to make use of the support when you find yourself in a role.
On the flip side, a number of insurers (and even some of the larger brokers) now have internal risk engineers. So whilst a basic knowledge is required, it wouldn't necessarily be to the extent that the courses mentioned above would provide. The conversations I've had have been much more "we can support from a technical perspective, we are looking for those with the ability to underwriter and seek a deal".
From purely a "what's most useful for a recruiting manager to see" perspective, I'd say that in insurance (broking with the larger alphabets included), the CISM/CISSP are looked at extremely favourably. An underwriter or broker who knows the lingo and can speak the technical language that's required is extremely valuable. I know that some companies will actively sponsor these qualifications, so you may wish to consider a beginner's course to get a flavour and then look to make use of the support when you find yourself in a role.
On the flip side, a number of insurers (and even some of the larger brokers) now have internal risk engineers. So whilst a basic knowledge is required, it wouldn't necessarily be to the extent that the courses mentioned above would provide. The conversations I've had have been much more "we can support from a technical perspective, we are looking for those with the ability to underwriter and seek a deal".
Check this guy out.
https://youtube.com/@SimplyCyber
He does daily run through of top 5 or 6 cyber news topics, hacking demos, interviews peers and is an allround cyber enthusiast with lots of experience.
He also has huge number of vids dedicated to getting people into cyber from non IT backgrounds.
https://youtube.com/@SimplyCyber
He does daily run through of top 5 or 6 cyber news topics, hacking demos, interviews peers and is an allround cyber enthusiast with lots of experience.
He also has huge number of vids dedicated to getting people into cyber from non IT backgrounds.
Tryhackme.com is a pretty good intro. Lots of free stuff. I've just done SANS SEC401 as pretty much a novice and found it pretty tough going. Comp TIA security+ is a cheaper option. The best advice i would say would be to get familiar with Linux commands, get a VM box set up and have a play with lots of the free scanning tools etc as you are learning.
Edited by rix on Thursday 17th August 14:31
DizzyN said:
Out of curiosity, are you already in the insurance industry? I know several senior underwriters in this space and whenever hiring, they tend to go within the network i.e. underwriters already (not necessarily Cyber) or brokers. I have been approached regarding Cyber underwriting roles and whilst no technical qualifications, it was due to my experience in the market that led to interviews. Also worth noting that if you do not have industry experience, you may well be looking to go in as a UA (tends to go Underwriting Assistant, Assistant Underwriter, Underwriter and beyond), rather than fully fledged underwriter straight off the bat.
From purely a "what's most useful for a recruiting manager to see" perspective, I'd say that in insurance (broking with the larger alphabets included), the CISM/CISSP are looked at extremely favourably. An underwriter or broker who knows the lingo and can speak the technical language that's required is extremely valuable. I know that some companies will actively sponsor these qualifications, so you may wish to consider a beginner's course to get a flavour and then look to make use of the support when you find yourself in a role.
On the flip side, a number of insurers (and even some of the larger brokers) now have internal risk engineers. So whilst a basic knowledge is required, it wouldn't necessarily be to the extent that the courses mentioned above would provide. The conversations I've had have been much more "we can support from a technical perspective, we are looking for those with the ability to underwriter and seek a deal".
Hi. Thanks, yes I am, 25 years in Insurance with about half in Sales & Distribution/Relationship Management role. 22 years at an Insurer. From purely a "what's most useful for a recruiting manager to see" perspective, I'd say that in insurance (broking with the larger alphabets included), the CISM/CISSP are looked at extremely favourably. An underwriter or broker who knows the lingo and can speak the technical language that's required is extremely valuable. I know that some companies will actively sponsor these qualifications, so you may wish to consider a beginner's course to get a flavour and then look to make use of the support when you find yourself in a role.
On the flip side, a number of insurers (and even some of the larger brokers) now have internal risk engineers. So whilst a basic knowledge is required, it wouldn't necessarily be to the extent that the courses mentioned above would provide. The conversations I've had have been much more "we can support from a technical perspective, we are looking for those with the ability to underwriter and seek a deal".
I have had various UW roles Inc a number of years in Engineering and am undertaking the CII Cyber & Risk Management course currently plus have OK knowledge I'd say so feel very confident I can transition to a Cyber role well. I just want to give myself the very best chance.
Frustratingly I went for a specific role recently where they were open to non-UW roles but despite emailing and calling the recruiter over a period of four weeks, I never heard back. That role looked brilliant.
Thanks for your help. If you're a London Market bod, perhaps we've either come across each other of have mutual acquaintances?
heisthegaffer said:
Hi. Thanks, yes I am, 25 years in Insurance with about half in Sales & Distribution/Relationship Management role. 22 years at an Insurer.
I have had various UW roles Inc a number of years in Engineering and am undertaking the CII Cyber & Risk Management course currently plus have OK knowledge I'd say so feel very confident I can transition to a Cyber role well. I just want to give myself the very best chance.
Frustratingly I went for a specific role recently where they were open to non-UW roles but despite emailing and calling the recruiter over a period of four weeks, I never heard back. That role looked brilliant.
Thanks for your help. If you're a London Market bod, perhaps we've either come across each other of have mutual acquaintances?
Impressive career! Unfortunately I can’t recommend a particular recruiter and for what it’s worth and in my experience only, I’ve found recruiters to be awful in this space and have never had any luck. In fact, I remember a number of years ago being told I’d have to take a significant pay decrease to move into Cyber! I’d recommend using LinkedIn to see what’s currently available (I see this morning that Aviva, Hiscox, CFC and a few others currently have postings up) then leveraging the relationships you have to meet underwriters directly (particularly those who will have influence when hiring). I have had various UW roles Inc a number of years in Engineering and am undertaking the CII Cyber & Risk Management course currently plus have OK knowledge I'd say so feel very confident I can transition to a Cyber role well. I just want to give myself the very best chance.
Frustratingly I went for a specific role recently where they were open to non-UW roles but despite emailing and calling the recruiter over a period of four weeks, I never heard back. That role looked brilliant.
Thanks for your help. If you're a London Market bod, perhaps we've either come across each other of have mutual acquaintances?
Don’t disregard broking either as you’ll have already made relationships from your current and previous roles and may find it easier to be introduced to dedicated cyber teams.
I am indeed! It’s a small world so we may have, though nowadays a lot of my relationships are purely within the small cyber bubble. Happy to help with anymore questions as well!
DizzyN said:
heisthegaffer said:
Hi. Thanks, yes I am, 25 years in Insurance with about half in Sales & Distribution/Relationship Management role. 22 years at an Insurer.
I have had various UW roles Inc a number of years in Engineering and am undertaking the CII Cyber & Risk Management course currently plus have OK knowledge I'd say so feel very confident I can transition to a Cyber role well. I just want to give myself the very best chance.
Frustratingly I went for a specific role recently where they were open to non-UW roles but despite emailing and calling the recruiter over a period of four weeks, I never heard back. That role looked brilliant.
Thanks for your help. If you're a London Market bod, perhaps we've either come across each other of have mutual acquaintances?
Impressive career! Unfortunately I can’t recommend a particular recruiter and for what it’s worth and in my experience only, I’ve found recruiters to be awful in this space and have never had any luck. In fact, I remember a number of years ago being told I’d have to take a significant pay decrease to move into Cyber! I’d recommend using LinkedIn to see what’s currently available (I see this morning that Aviva, Hiscox, CFC and a few others currently have postings up) then leveraging the relationships you have to meet underwriters directly (particularly those who will have influence when hiring). I have had various UW roles Inc a number of years in Engineering and am undertaking the CII Cyber & Risk Management course currently plus have OK knowledge I'd say so feel very confident I can transition to a Cyber role well. I just want to give myself the very best chance.
Frustratingly I went for a specific role recently where they were open to non-UW roles but despite emailing and calling the recruiter over a period of four weeks, I never heard back. That role looked brilliant.
Thanks for your help. If you're a London Market bod, perhaps we've either come across each other of have mutual acquaintances?
Don’t disregard broking either as you’ll have already made relationships from your current and previous roles and may find it easier to be introduced to dedicated cyber teams.
I am indeed! It’s a small world so we may have, though nowadays a lot of my relationships are purely within the small cyber bubble. Happy to help with anymore questions as well!
Gassing Station | Computers, Gadgets & Stuff | Top of Page | What's New | My Stuff