+ Reply to Thread
Results 1 to 10 of 10
  1. Senior Member egrizzly's Avatar
    Join Date
    Jun 2006
    Posts
    241

    Certifications
    BS Information Systems, CCNA, CCNP, Security+
    #1

    Default Autonomy in InfoSec

    Hello TE world,

    Which field in InfoSec would you say has the most autonomy, I mean a situation where you can just obtain the skills needed and then be able to work for yourself. I used to assume it was mainly the CISA certification however I'm seeking some clarification.

    egrizzly.
    Reply With Quote Quote  

  2. SS -->
  3. Senior Member
    Join Date
    Apr 2014
    Location
    South Florida
    Posts
    857

    Certifications
    CISSP, CISM, CISA, CRISC
    #2
    You can work for yourself doing anything! but to your point maybe PENTESTING.
    Reply With Quote Quote  

  4. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,848

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #3
    You can't circumscribe it to a single cert. There are very succesful independent consultants for basically every Infosec discipline. The question is how long will it take you to develop those skills and market them.
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    May 2006
    Posts
    2,021

    Certifications
    CISSP, CCSP, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #4
    Work for yourself as making your own company or taking side gigs and contracts or work for yourself the issues of tasks you are assigned without involving other team members?
    Reply With Quote Quote  

  6. Senior Member yoba222's Avatar
    Join Date
    Jun 2013
    Posts
    433

    Certifications
    LFCS, GCIH, eJPT, CCNA, CAPM, Sec+, Net+, A+
    #5
    Consulting. You pick the specialty.
    Reply With Quote Quote  

  7. Senior Member
    Join Date
    Mar 2011
    Location
    Chicago
    Posts
    1,325

    Certifications
    CISSP-ISSAP, HCISPP GPEN, GSEC, GSNA, GCIH, E|CH, ECSA, Security+
    #6
    Vulnerability research is the only path I have ever seen that would allow you to work completely solo, at home and on your own time. For instance, you find the right vulnerability and Google coughs up to 500k. Usually less but finding unknown exploits can be very lucrative.

    For most of us a single certification isn't going to provide you with a stable income. Most commonly its dedication, hard work and attention to detail that provide a stable enough income to consult for any length of time. Unfortunately, much of the security field in general is contract anyhow.

    Good luck,

    b/eads
    Reply With Quote Quote  

  8. Senior Member egrizzly's Avatar
    Join Date
    Jun 2006
    Posts
    241

    Certifications
    BS Information Systems, CCNA, CCNP, Security+
    #7
    ...so to put it simply, penetration testing is what you're vaguely saying provides the most autonomy. Pen Testers find vulnerabilities in company servers working as white hat hackers.

    Quote Originally Posted by beads View Post
    Vulnerability research is the only path I have ever seen that would allow you to work completely solo, at home and on your own time. For instance, you find the right vulnerability and Google coughs up to 500k. Usually less but finding unknown exploits can be very lucrative.

    For most of us a single certification isn't going to provide you with a stable income. Most commonly its dedication, hard work and attention to detail that provide a stable enough income to consult for any length of time. Unfortunately, much of the security field in general is contract anyhow.

    Good luck,

    b/eads
    Reply With Quote Quote  

  9. Senior Member egrizzly's Avatar
    Join Date
    Jun 2006
    Posts
    241

    Certifications
    BS Information Systems, CCNA, CCNP, Security+
    #8
    Quote Originally Posted by TheFORCE View Post
    Work for yourself as making your own company or taking side gigs and contracts or work for yourself the issues of tasks you are assigned without involving other team members?
    the latter
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Jul 2015
    Posts
    457
    #9
    Quote Originally Posted by egrizzly View Post
    the latter
    In that case, you can do it with pretty much any specialty. You just have to be better than the majority of the other people whom specialize in that area, and find a boss that likes results.
    Reply With Quote Quote  

  11. Junior Member Registered Member
    Join Date
    Sep 2017
    Posts
    6
    #10
    I agree with another poster that bug bounties are a good way to go if you want ‘full autonomy’, but you need to be confident in your fuzzing and pentesting skills. In other words, dont give up your day job to pursue it as the opportunities and rewards are unpredictable. Consulting is obviously a good start, but you’re still beholden to your clients’ expectations. For general infosec, the CISA and ISO LA routes could be an option. IMO auditing provides the best opportunity to be ‘independent’, given that it is a core tenet of the profession.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks