Re: Security books, portals, blogs and videos

[robert () bernaerts nl]

Hi Nico,

I am not a security specialist yet, but eager as you are to become one.
So far i watched the certified ethical hacker serie from cbt; there is an offical exam for this one. The course teaches 
you some tools and to learn to think like a hacker.
Few months ago i passed the cisco ccna exam and i will continue with ccsp (pix firewall is 1 of 4 exams in ccsp)
Further i think i will go for the CISSP exam, there are cbt videos for this one as well.
Offically, you need to have 4 years practial security expierence to call yourself a cissp certified. (after passing of 
course) But i read somewhere, you can take the exam, even if you don't have the needed expierence.

For websites, i am looking for good online resources as well.
I don't know where you from, but my self i read htpp://www.security.nl , which is nice uptodate.
Of course securityfocus is great as well.
Irongeek has many great online tutorials and some references to other great sites.

Last week i downloaded some live linux iso's, which have great tools on them. According my point of view, you have to 
read a lot of security stuff, but also to test a lot practically.
A nice overview of live linux cd's you can find on http://www.forinsect.de/security/bootcds.html ; i think backtrack is 
one of the best.

The most important thing to get a security job is according to me, is to be very, very eager to become one and to have 
a broad interest in it security.
I am on the stage that i know what i want to become (i have like 8 years expirience in overall networking and all 
windows versions.)
I am reading everything about security which interest me and i hope after some time, it will sink in alltogether i can 
call myself a bit of a security specialist.
What i hear a lot is, to bust a hacker/cracker, you have to learn how they think, how they act and which tools they use.

These are my advises; i hope they will be helpful to you, although i am not a security expert (yet).

cheers,
Rob.

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------