Re: breaking in to security, trying to get answers

["Butturini, Russell" <Russell.Butturini () Healthways com>]

Maybe this will help with your question.  When I taught at ITT Tech in the infosec program, we used to have students 
hired who were graduates of the information security program there into entry level information security jobs such as 
IDS analysts, entry level positions on threat & vulnerability management teams (duties such as managing and 
coordinating Nessus scans etc. with the application owners), identity management and account provisioning functions, 
etc. To answer the second part of your question, it's hard to say.  ITT is very much a "you get out of it what you put 
into it" university, so many of the students who were my favorites, like the ones who read things outside of class, 
stayed after to ask questions, and were very actively involved and desired to learn, did quite well.  Some of the 
others who cruised through and did just what was needed to earn the credit hours who took these jobs floundered.  I 
think that very much translates into their real life jobs, as the
 y're only going to get the very basic and on the job training types of jobs above.  The ones who have succeded are the 
ones who actively learned and expanded their skillsets past earning their degrees, and engaged their employers to do 
more advanced work.  


-----Original Message-----
From: pauldotcom-bounces () mail pauldotcom com [mailto:pauldotcom-bounces () mail pauldotcom com] On Behalf Of Robin 
Wood
Sent: Sunday, February 26, 2012 1:47 PM
To: PaulDotCom Security Weekly Mailing List
Subject: Re: [Pauldotcom] breaking in to security, trying to get answers

On 25 February 2012 11:30, Kevin Shaw <kevin.lee.shaw () gmail com> wrote:
> I went the start from scratch route, after doing help desk then moving to
> something like post sales and QA, my resume was picked off monster because I
> was located near the place that needed entry level type intrusion analysts.
> Back then getting moved or promoted into other areas was easy if you
> demonstrated aptitude and a willingness to learn more. I think the same
> holds true today, but finding those doors in can be harder with established
> SOCs and similar who often are more critical of experience and may be
> looking for more senior people. You almost need an internship type program.

Seems to be the way most people over 25 or so got into it, under that
age people are going to uni to study it and coming in directly.

Are there any employers out there who have taken on people directly
from university? How do they go, without the background do they manage
to pick things up and if so how long?

Robin

> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


******************************************************************************
This email contains confidential and proprietary information and is not to be used or disclosed to anyone other than 
the named recipient of this email, 
and is to be used only for the intended purpose of this communication.
******************************************************************************
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com