+ Reply to Thread
Results 1 to 12 of 12
  1. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    225
    #1

    Default IT Pro Journey into Security?

    I was wondering if this is a good roadmap for someone with an IT background to get into the InfoSec side of things:

    https://www.cbtnuggets.com/blog/2017...areer-pathway/

    Thoughts? My waryness here is a lot of the vendor-specific stuff early on. Am I wrong in worrying?
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-417 - Upgrading Your Skills to MCSA Windows Server 2012 R2
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member
    Join Date
    Apr 2013
    Posts
    1,896
    #2
    It depends, what area of security do you want to get into? It's like saying "I want to get into IT", when that could mean one of 20 different areas. That seems more like a path for network security, but like you said, very network specific. Like for my environment I'd appreciate the Cisco stuff, but you probably wouldn't be configuring the ASAs, and you wouldn't touch PA or Checkpoint gear. Overall, not an great guide.

    Read this

    https://tisiphone.net/2015/11/08/sta...-chapters-4-5/

    and try to figure out what actually interests you instead of just trying to collect letters, then you can make a path to get there.
    Reply With Quote Quote  

  4. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    225
    #3
    Well the way I saw it, the CISSP (the ultimate goal) seems to suit anything from Security Consultant all the way to IT Director and through to the CISO. I guess it's more the getting there, in this case. In security, I'm thinking more along management and consultancy
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-417 - Upgrading Your Skills to MCSA Windows Server 2012 R2
    Reply With Quote Quote  

  5. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    225
    #4
    So this is my current plan:



    Long-term, of course, and based on experience as it comes in. I figured having some network experience and understanding would be beneficial (I work as a Technical Consultant right now, so it's more validation).
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-417 - Upgrading Your Skills to MCSA Windows Server 2012 R2
    Reply With Quote Quote  

  6. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,779

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #5
    I think this is duplicate in some areas and lacks focus. What is the end goal? Where do you want to get? That may help refine and narrow down the list.
    Reply With Quote Quote  

  7. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    225
    #6
    So out of all the areas, my main interest seems to have settled on Intrusion Detection & Monitoring. The idea of "countering" the attacker and figuring out how it happens/happened.
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-417 - Upgrading Your Skills to MCSA Windows Server 2012 R2
    Reply With Quote Quote  

  8. Senior Member
    Join Date
    Feb 2015
    Location
    The Interwebs
    Posts
    144

    Certifications
    PMP, CISSP, CISA
    #7
    I'd probably drop MTA: Security fundamentals, CCNA: Security, and SSCP. And I'd consider adding CSA+ and maybe GCIH.

    You could probably simplify it even further: Net+ -> Sec+ -> CEH -> CSA+ -> CASP/CISSP
    Reply With Quote Quote  

  9. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    225
    #8
    Very helpful, thank you. I've taken out CCNA: Security and SSCP, and added CSA+ and GCIH. I assume GCIH comes after CSA+?

    I've decided to keep the MTA, as I'm keen to make sure my bottom foundational levels are solid, so the more I validate there, the better I'll feel moving forward.
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-417 - Upgrading Your Skills to MCSA Windows Server 2012 R2
    Reply With Quote Quote  

  10. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,566

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #9
    Quote Originally Posted by Phalanx View Post
    I assume GCIH comes after CSA+?
    Doesn't really matter, they are fairly close in terms of knowledge. I would even question the need for both. GCIH is probably more well known, of course it costs a lot more though. The only reason I would ever get both is if you were having trouble getting a position you wanted and wanted to pad the resume.
    Reply With Quote Quote  

  11. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    225
    #10
    Ah, interesting. OK, so perhaps focus on CSA+ unless I really need GCIH?
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-417 - Upgrading Your Skills to MCSA Windows Server 2012 R2
    Reply With Quote Quote  

  12. They are watching you NetworkNewb's Avatar
    Join Date
    Feb 2015
    Location
    Off the grid
    Posts
    2,566

    Certifications
    A+/Net+/Sec+, CCENT, CCNA:Sec, CCSK, GCIH
    #11
    Yep, that is what I would do, unless a company is paying for you to take the course for the GCIH.
    Reply With Quote Quote  

  13. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    225
    #12
    That's perfect, thank you. Finally after a few weeks, I've got a plan in my head. Thank you.
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-417 - Upgrading Your Skills to MCSA Windows Server 2012 R2
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks