Related Posts
CAIA vs CFA?
Hello All, In the next couple of months i am targeting companies like Apple , American express, Salesforce, Microsoft etc. Can anyone please share the required skill set and preparation strategy for these companies? YoE - 4 years Current skill set - Advanced SQL , Pyspark,Azure services, Hadoop ecosystem , shell scripting, Power BI
I am not very good at DSA.
Apple Microsoft Salesforce Amazon
More Posts
That's a cool idea!
Wearing to work today
How is pega practice in LTI ?
Pro
Additional Posts in Cyber Security Bowl
Anyone ever heard of or worked for Sygnia?
Any tips or tricks for CSX certification?
New to Fishbowl?
Download the Fishbowl app to
unlock all discussions on Fishbowl.
unlock all discussions on Fishbowl.
If you truely want to be “focused” you are probably at the wrong firm. You need to “do” not consult. Best option at EY to learn is to land on a managed service. And if your doing that then you should know a SANS GIAC cert is what path you need to be on. Otherwise you need to eject and go to industry to actually focus on actual defending. https://www.sans.org/cyber-security-skills-roadmap/?msc=cyberseclp-courses
I’m no longer at EY (RIF)
John Strand from Black Hills Info Sec is running a SOC core skills training session next week, Monday to Friday. It’s a pay what you can afford course, 5hrs a day. I’d recommend you take this course if you have the time to just double check that this is something you want to do as the certs can be expensive. What’s unique about this course is I THINK we’re going to get literal hands on training which is super rare to get. Find him on LinkedIn and have a mooch!
For context, I’ve been transitioning into cyber since Jan last year and I’ve taken Net+, AZ-900 and I’m also on OffSec’s Fundamentals program along with studying for Sec+. I’m aiming to take the OSCP/OSWE early 2025.
Not sure what’s next. All these trainings cost a lot of $$$
CySA+ isn’t too bad for that.
SANS has a number of courses but they’re vastly more expensive.
When you get your CISSP they have a
Somewhat incident response related add on, don’t recall which one.
Thank you so much! I was looking at SANS but the price is jarring. My plan is to find a role where the company will pay for that exam.
What cyber work did you do at EY? The best entry level training for IR would be the BTL1. Getting into IR is pretty tough and most want GCFE/GCFA. Idc what anyone says SANs is the gold standard in terms of certifications/HR filter.
They were tool and readiness assessments. I agree on the TTX. I’ve tailored my resume to incident response and bring up the TTXs I’ve done in screening calls and get a positive response.
I personally think those aren’t diverse or highly skills and you will either get bored or you’ll be cut. I personally think you should focus more on infrastructure security which covers a lot of things, like AWS, terraform, threat modeling
I did GRC/IAM-VM- IR- and now I’m doing more infrastructure security and trying to build toward appsec and cloud
You can try e-learn security’s Threat hunting and Incident response. It’s hands on and sharpens your intellect around DF, identifying vulns, and TH. Not sure if it’s recognized in your jurisdiction though
So which is it? Lol IR or VM. Those two are very different
I want to be skilled in both.