PaulDotCom mailing list archives
Re: [GPWN-list] breaking in to security, trying to get answers
From: CP Constantine <conrad () 1211 net>
Date: Mon, 20 Feb 2012 14:03:35 -0500
On 02/20/2012 11:17 AM, Josh More wrote:
There are a lot of people who ask me at events and on IRC how to get started, so I wrote up this little HOWTO. It's very cert-heavy, as the most common question I get is "which certification do I need to break into security"... so I have to start with the news that it just doesn't work that way.
I'm always finding myself having trouble answering this question to people myself, because I'm from there era when there really was no security industry. I self-taught myself back in the 80's and early 90's, and when the internet boom hit, the demand for security people of any sort whatsoever, completely outstripped the fact that I was a high school dropout with no degree, who'd taught himself by way of hard-won hands-on experience. One of the talks I'm putting together, is a little reminiscing of those days, and how the time has passed for 'people like me' in some ways (or at least, we're needed elsewhere in the Industry now). And that many of the things we disdained early on, are becoming more vital now.. Some things however, will never change: and my #1 bit of advice for anyone getting into Infosec is "Do something else first!". I still think that the #1 most effective skill any infosec person can have, is a frame of reference from outside security. Prior experience in tech support, systems administration, development is pretty much *always* preferable over someone straight out of college with a two-year security-related degree. Beyond that, the field is growing in scope with each passing year, that you may as well ask "How do I get a job in IT" for the same effect now. The best advice is always going to be "By doing stuff with computers". No amount of formal training is *ever* going to overcome not having an answer for that ultimate IT interview question "Tell me about the projects you work on, in your own time" _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- breaking in to security, trying to get answers Robin Wood (Feb 20)
- Re: breaking in to security, trying to get answers CP Constantine (Feb 20)
- Re: breaking in to security, trying to get answers xgermx (Feb 20)
- Message not available
- Re: [GPWN-list] breaking in to security, trying to get answers Robin Wood (Feb 20)
- Re: [GPWN-list] breaking in to security, trying to get answers John Hoyt (Feb 20)
- Re: [GPWN-list] breaking in to security, trying to get answers Josh More (Feb 20)
- Re: [GPWN-list] breaking in to security, trying to get answers CP Constantine (Feb 20)
- Message not available
- Re: [GPWN-list] breaking in to security, trying to get answers Colin Vallance (Feb 20)
- Re: breaking in to security, trying to get answers Robin Wood (Feb 20)
- Re: [GPWN-list] breaking in to security, trying to get answers Tony Turner (Feb 20)
- Re: [GPWN-list] breaking in to security, trying to get answers John Hoyt (Feb 24)
- Re: [GPWN-list] breaking in to security, trying to get answers Brian Wilhide (Feb 25)
- Re: breaking in to security, trying to get answers Kevin Shaw (Feb 26)
- Re: breaking in to security, trying to get answers Russell Eubanks (Feb 26)
- Re: breaking in to security, trying to get answers Robin Wood (Feb 26)
- Re: breaking in to security, trying to get answers Brian Wilhide (Feb 26)