Cyber Security Bowl

I want to get into governance and risk (cyber security) and into a role that isn’t stakeholder heavy at all. I really just want to complete tasks and have minimal meetings. Which role would be best fo… more

Interviewing at PwC. How’s the travel looking these days?

As a GRC analyst making 93k, what is the best certification to get to increase salary in next role to around $140k? CRISC, CISSP, or CISM?

Is the market really getting better for cyber? What jobs are people getting these days? I’m kind of stuck on low end analyst roles, but happy and grateful to get any offers.

I had my microphone pop up on my iPhone without me pushing it. I clicked the microphone and some popup came on and mentioned something like AKR and had some other language about it being a hidden app.… more

How is Cybersecurity Audit doing vs. Cyber Strategy long-term?

I’m thinking of taking a role as a Senior Auditor (FedRamp, CMMC, SOX, Compliance Automation) in industry for $180K to deepen my skill. B… more

Interviewing for IAM role at EY. What’s the travel situation, is it back to pre covid level?

PwC manager salary for experienced hires? job posting says 99k-232k.

Quick pulse check - how is cyber consulting doing these days? Feels like hiring is just on status quo but curious if folks have found good luck switching firms these days. I’m in GRC/PMO, the least ma… more

Is anyone familiar with PwC’s Cyber Strategy, Risk, & Compliance team? How’s that practice doing?

I’m interested in understanding the nature of their work as I’m actively interviewing. They seem m… more

EY Manager salary range for experienced hires?

I am curious if any mid-to-upper-level professionals have encountered difficulty finding roles due to their age. (55-60)? Washington DC area.

How is BAH for cyber these days? I’m looking for places to pivot to from Big 4.

Opinions on the value of CMMC CAP?

Would you take a ~15% pay cut to join an industry you’re more interested in? Currently a manager at big4 but would be moving to an individual contributor role.

Looking for a CISSP exam accountability partner.

My goal is to take the exam in 3 months (no date yet because travel).

Basically we'll meet for 30 minutes (or less) once a week, discuss our last practice exam score, talk… more

Hi All, looking for some advice. Im trying to pivot more to the legal side of privacy while not loosing the cyber data privacy side. Currently in Consulting (3 years) with several years prior in broad… more

Anyone hiring in IAM? at M level.

Are there any websites I can apply for contracting positions? I have been applying to full time positions in GRC for 6 months now and have gotten several interviews but no offer. I need to make some s… more

Anyone in cyber GRC able to provide tips on aceing a technical GRC interview? pivoting from geopolitical analyst to cyber GRC and am unsure of how to frame my experiences for a technical interview

When networking or following up after submitting an application, have you found it more effective to reach out directly to the hiring manager or members of the team you're applying to-rather than trying… more

So, I currently hold a CISSP and recently registered for the CISA, but my day job in Cyber GRC/Internal Audit is already very demanding.

Should I focus on deepening real-world experience, or push through to compl… more

Are firms/companies still hiring in November and December (before the holidays?) Like is there a chance for me to get hired and use the new 3 weeks in November before thanksgiving and the several week… more

Anyone have any insight on a Cyber Consulting role at BCG Platinion? A recruiter reached out but I’m not sure what to expect from the process. Can’t even find any resources online regarding the cyber … more

Any consulting firms where people have technical depth?

Most of my colleagues in my group mostly have high-level knowledge on NIST CSF or general compliance. Thinking of switching firms or going to in… more

What are the hottest cybersecurity fields and skills now? Are generalists still needed or too saturated now?

I’m hearing niche specialists are higher in demand.

I’m hearing GRC and AI automation are hot. I’m also … more

Are Big 4 firms technical at all or do they just roll out-of-the-box solutions out?

I’m considering leaving. It feels like all the techies and SMEs are at vendor companies or boutiques.

Any thoughts on west Monroe’s security practice? Pay, prestige, work/life, etc.

Has anyone here taken the GIAC Cyber Threat Intelligence (GCTI) exam?

I have no motivation to study for the CISSP.

Cyber career pivot post: 8 years of experience in GRC/TPRM but bored out of my mind. Pay and WLB are good but I’m just over it. Anyone who can share their story on a successful career pivot within cyb… more

Is anyone looking for roles and finding it spammed on linkedin. I look to apply for a head of role and linkedin is saying over 100 have applied in a few hours. Im in the uk and in consulting but i find it r… more

Any recommendations for FedRamp training? It’s always a requirement in job posting I’m coming across

Anyone here a cloud solutions architect (security) at Microsoft?

Do any of you have experience in how your team defines and implements SOC 2 controls from scratch? Do you follow a standard framework, or are controls created specifically for your environment?

I’m interested in the hotel industry. Does anyone do cyber for a resort or hotel?

What are your thoughts on AI Governance as a viable and sustainable career path moving forward? Do you thing it is here to stay? Or simply something that is in vogue while AI is in its nascent stage?

Hello. Looking for anyone’s feedback on their experience in cyber threat intelligence and possibly a referral. Any insight would be appreciated!

If you already have a TS clearance, will jobs that require TS/SCI w/ CI Poly sponsor you for the rest? Or do they prefer to wait for a candidate that already has it?