Need some direction - getting back into IT (security)

delita

[H]ard|Gawd
Joined
Mar 10, 2014
Messages
1,897
I moved over to Pre-sales about 8 years ago, got an associates in Info Systems, took a job as a network manager, hated it, moved into consulting and sales.

Fast forward - I've been working for a cyber security vendor for about 2 years deploying a SaaS product in the area of threat intelligence/vulnerability management.

I've decided I want to leave sales/pre-sales and go back and cert up. I'm thinking Security+, and CISSP to start. Any security guys here that can give me some tips? I've been out of the game for a long time, should I go with a full instructor led course for these to get the most out of them? Any suggestions on who to use, etc. I'm not the type of person that just goes and buys a book and tries to do a brain dump to pass an exam - I actually want to learn a thing or two and change my career trajectory before its too late.

Any help would be appreciated
 
Skip the Security+ and just do the CISSP assuming you meet the experience requirements.

For prep, look into your local ISSA chapter as they often will run prep courses for free or next to free that volunteers from the chapter will teach.
 
I've been told to get involved with Infragard as well. Doing the CSA+ might be more up your ally. It has to deal with a lot of logging.
 
Last edited:
Question is what do you want to do in security? There are SOOOOO many sub fields you need to know what you want to do?
 
Question is what do you want to do in security? There are SOOOOO many sub fields you need to know what you want to do?
Truthfully I like what I've been working with in the area of vulnerability management.
 
Skip the Security+ and just do the CISSP assuming you meet the experience requirements.

For prep, look into your local ISSA chapter as they often will run prep courses for free or next to free that volunteers from the chapter will teach.

I do not yet meet the experience requirements for CISSP. Assuming that's the case, better to start with Secuity+ or go straight to CSA+ considering I'm looking at being in the Cybersecurity space starting out in some type of analyst position most likely. I see a lot of job descriptions that for some reason mention Security+ much more often than the CSA+ although the CSA+ seems to make more sense.
 
I'm sure you could use some of the years spent coming other IT jobs as security experience. I think you can test and if you pass you will get the vet once you meet the job time...? There also is sscp and ceh to look at.

I agree with Infraguard and ISSA.
 
I've been told to get involved with Infragard as well. Doing the CSA+ might be more up your ally. It has to deal with a lot of logging.

My infragard chapter is pretty dead, I stopped paying attention to the emails. Semi-annual meetings in citys 2 hours away....no thanks. Try to find some meet ups in your area. I live in the sticks in Michigan but have things like Arbsec (Ann Arbor Security) meetups at a bar in Ann Arbor and different conferences. definitely attend conferences!

Truthfully I like what I've been working with in the area of vulnerability management.

You mean working with things like Tenable or Rapid7 products? I do this for a living, let me know if you have questions....
 
Back
Top