Re: CV for InfoSec Jobs

[Tariq Rahman <rahmant () gmail com>]

I would suggest first deciding which area of Security you'd like to focus
on.  Engineering, Operations, Risk Assessment, Auditing, Penetration
Testing, User Awareness, etc. - the list of options available as a security
related career path are pretty wide open.  Take a look at the field of
security related jobs on some common job search sites (monster, indeed,
etc.).  Once you've decided on a particular path, you can then try to
tailor your CV accordingly.

While Infosec is still a growing field, it's important to note that not
every organization will have the budget to hire a dedicated resource just
for security.  You mentioned your current role as a network/sysadmin - I'd
make the statement that many companies often need at least one person for
that role.  My own 2cents says that, unless you're going to focus on
security consulting work, you're likely going to be picked up for a
dedicated security role by larger organizations with budget and greater
security focus than smaller ones.  I don't know if that matters to you but
I thought I should mention it.

As mentioned by others, certs and a degree do matter, especially as you
start making your way up the food chain.  Whether or not those skills are
actually used is a different story, unfortunately IMHO they are likely just
"checkboxes" used to weed out the field of applicants for a position.

If focusing on a technical track, then as mentioned by others, I'd suggest
attempting to learn about a few security technologies in order to
distinguish yourself.  Firewalls, Intrusion Prevention, Content Filtering,
2 Factor Auth, SIEM and DLP are all good focus areas, but obviously pick
the one or ones that interest you and that you think you'd be good at.
Some of this tech is something you can learn yourself with a small lab,
others you'd pick up on the job, hopefully via some company-sponsored
training.

Hope this helps - best of luck to you :)

Tariq


On Wed, Jan 30, 2013 at 11:17 AM, Bacon Zombie <baconzombie () gmail com>wrote:

> Hi All,
>
> I'm looking to move from Network/System Admin role into pure Security
> and in the middle of updating my CV.
>
> I would like to see if the hive mind has any opinion on what should
> and should not go into a CV and should a CV for a Security Job be
> different from a standard Tech CV.
>
> Soon difference that come to mind are:
>
> #> Do you list conferences you have attended and if so what section do
> you list them under or do they deserve there own section.
>
> #> Do you list projects and CTF.
>
> #> Do you list that you are a member of your Hackerspace, DC or 2600
> group and what do you put it under.
>
> #> Do you follow the no more then 2 or 3 pages rule or has that
> changes now since most people will read your CV via TXT/PDF/DOCX and
> not a printout.
>
> What are some thing really should include and also really should not
> include on my CV.
>
> Thanks in advance,
>
> P.S : Just realised CV may not be a common term for all; CV =
> Curriculum Vitae or Résumé.
>
> --
>
> BaconZombie
>
> LOAD "*",8,1
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com