+ Reply to Thread
Results 1 to 5 of 5
  1. Member
    Join Date
    Sep 2016
    Posts
    65

    Certifications
    MCSA, CCNA, CCSA
    #1

    Default Security Analyst vs Security Engineer Skills & Certs

    I'm researching some options for my next career move, since I'd like to grow and bored with not learning anything lately.

    When I look at Security Analyst vs Security Engineer, I believe I understand the differences. As far as certs go, I believe the SSCP/CISSP would be beneficial for both types of positions. What I'm lost on is, what type of skills are required for both jobs?what other certifications are better to obtain with each specific role? How to go about gaining those skills on your own? Job postings seem very mixed, some seem this is one role, but others seem to be very separated
    Reply With Quote Quote  

  2. SS -->
  3. "Too many routers"? Heh. darkerz's Avatar
    Join Date
    Oct 2009
    Location
    WA
    Posts
    427

    Certifications
    CCIE R&S, CCIE Security, Some SAN's Stuff
    #2
    Security Engineering can fall into a few categories....

    Threat & Vulnerability Management, Red Team Penetration Testing, Blue Team Network Security & SIEM, Audit and Compliance (I'm sorry), Risk Assessment and Reporting and finally "An engineer at a Fortune 500 that gets to do a bit of everything".

    It gets pretty deep and most people who specialize in 1-2 of the above will find themselves applying to a LOT of roles only to find out its not what they though. However, prior experience, security fundamentals and understanding cyber-security defense and offense engagements can almost guarantee you a in-person loop/interview if you know your stuff.

    Good luck!
    Reply With Quote Quote  

  4. Clm
    Clm is offline
    Student Of The Cloud Clm's Avatar
    Join Date
    May 2012
    Location
    Denver
    Posts
    297

    Certifications
    CISSP | ITIL | SECURITY+ | A+ | LINUX+ | OPSEC LV II | LPIC-1 | GENERIC DEGREE
    #3
    Quote Originally Posted by CE1028 View Post
    I'm researching some options for my next career move, since I'd like to grow and bored with not learning anything lately.

    When I look at Security Analyst vs Security Engineer, I believe I understand the differences. As far as certs go, I believe the SSCP/CISSP would be beneficial for both types of positions. What I'm lost on is, what type of skills are required for both jobs?what other certifications are better to obtain with each specific role? How to go about gaining those skills on your own? Job postings seem very mixed, some seem this is one role, but others seem to be very separated

    From my experience with my last two companies Analyst are more Business reporting and day to day taking care of the application and the engineers are more back end Technical/troubleshooting of the application or service
    Some say motivation doesn't last, Neither does taking a bath that's why you must do it daily

    2017 Goals: AWS-CA

    Connect with me on LinkedIn https://www.linkedin.com/in/myerscraig



    Reply With Quote Quote  

  5. Member
    Join Date
    Sep 2016
    Posts
    65

    Certifications
    MCSA, CCNA, CCSA
    #4
    Quote Originally Posted by darkerz View Post
    Security Engineering can fall into a few categories....

    Threat & Vulnerability Management, Red Team Penetration Testing, Blue Team Network Security & SIEM, Audit and Compliance (I'm sorry), Risk Assessment and Reporting and finally "An engineer at a Fortune 500 that gets to do a bit of everything".

    It gets pretty deep and most people who specialize in 1-2 of the above will find themselves applying to a LOT of roles only to find out its not what they though. However, prior experience, security fundamentals and understanding cyber-security defense and offense engagements can almost guarantee you a in-person loop/interview if you know your stuff.

    Good luck!
    Any suggestions on how to get some of these skills on your own (Threat & Vulnerability Management, Blue Team Network Security & SIEM)? I know SANS offers courses, but may be too soon for that
    Reply With Quote Quote  

  6. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,560

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #5
    Quote Originally Posted by CE1028 View Post
    Any suggestions on how to get some of these skills on your own (Threat & Vulnerability Management, Blue Team Network Security & SIEM)? I know SANS offers courses, but may be too soon for that
    I think those are some skill most people build in the Security Analyst position and then move into the Security Engineer roles. As a security analyst myself, I do some of those things but don't go really deep into those areas. Get to do some of the grunt work as an analyst.

    As far as getting the skills on your own, things I would recommend is getting a cert like sscp/cissp, getting good at some scripting (I use powershell alot), and understanding logs and network traffic (wireshark would be good practice for that, they have cert too. WCNA I believe). You have a CCNP so guessing you have a decent understanding of the network side
    Last edited by NetworkNewb; 01-13-2017 at 06:54 PM.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks