Hello folks,
Working in VAPT role from 1yr and had a good knowledge (about network, web ,mobile, api and thickclient penetration testing)now thinking to switch into grc bcz technical seems to be bore and planning to do iso 27001 too. Is it good decision to switch ? *And what should I expect after switch

CCTC- 4.5

like
Posting as :
works at
You are currently posting as works at

ISO 27001 is not very helpful to get the GRC roles. The best way to transition is joining Big4/consulting organizations where you will get do VAPT, AppSec and GRC. You will get a lot of resources there for performing different GRC audits.

Work hard to get promotions on time (every 2 years)

Try to get involved in different audits with your seniors. If you do the SOC2, ISO27001, TISAX, FedRAMP audits job market is yours.

Don't forget to get CISA, CISM/CISSP down the line 5 years of your InfoSec experience.

like

Please tell me what you want to know?

Currently iam hating vapt bcz of these api mobile ios network web ad thick client i think soc is best??

Soc won’t give you WLB because of rotating shifts

like

.

Related Posts

Has anyone worked at a smaller branding agency? Would love to switch from big agency to actually creating brands but not sure how to start there.

like
like

Anyone volunteering with the upcoming CFE exam this week?

like

Wondering if $150,000 base + 25% bonus, no RSU, is underpaid for a Director of Operations in a Marketing/Tech firm?

Responsibilities include direct oversight of onboarding, support, implementation/integrations, customer success, production - fulfillment, production-web dev, and content departments. 8 years experience at various management levels, 2 years as DOP.

like

Hi fishes,
My sister is completed B. Com - 2022 passed out.

Which is the best domain for her, if she want to move to IT industry.

*Data science
*Aws, Devops
*Oracle SQL. PLSQL

like

I’m currently in the process of being converted from contractor to permanent. In my initial conversations I was under the impression that I was in a different pay grade and asked for a salary 25k higher than the max allotted for my position. I feel like it gave the impression that I don’t know what I’m doing. Any suggestion how I can recover from this?

like

Looking to understand the salary range for an executive level/managing account director at a large advertising agency.

like

currently tossing up between staying at a global company (who is in the process of some positive changes) with an amazing manager who supports my career and flexible working … however comes with the inherit issues that come with a long standing global company

compared with a role at a smaller mga, higher salary (around 30%) more , more visibility career wise and some great employee benefits , management seem to be supportive and low staff turnover

which would you choose here

like

Salary, location, and specific level (M1, M2, etc.) for a Manager in Tech Assurance/IT Audit?

like

Requesting people to share their comp. I can start first. Role: Developer YOE: 2 Base: 100k

like

What is the value in professional certifications? ACCA, CFA, CIPD, etc.

like

Have you heard of going from IT/IT Strategy at the Big 4 into Finance/Banking/General Strategy in industry? How feasible is that path?

like

Anyone else work in the service industry growing up? Worked at a Little Caesars for 4 years (youngest asst. manager ever thank you very much) and I maintain that I have never faced that level of pressure or stress in my professional career. Standing between a Karen-customer and their $5 pizza is not a feeling I’ll ever forget.

likefunny

Considering making the move from distressed investing/special situations to consulting, particularly pe consulting for the following reasons: more team-oriented, structured career path, more variety, etc. Thoughts?

like

Any Senior Copywriters interested in a salary info swap? I’m F, 7 yrs exp, making $70k and feeling very underpaid rn

Hello All,

Need some insights on
Adidas Gurgaon techub!! Working culture , growth , office, tech stack and management. Adidas

like

Advice on taking the SHRM-SCP exam? I’m taking the exam tomorrow and not feeling as prepared as I should. Who has taken the SCP exam? How difficult did you find it?

like

Want to switch from graphic design (mostly doing print, some digital) to UX/UI. Some advice, tips on how to make a transition? Classes, videos, books, interning? How to find first projects? Thanks.

likeuplifting

I understand A&M comp is primarily derived from the annual bonus based on collections/performance. However, given the significant increase in Big 4 FDD comp this year, are there any plans to raise the base salary for A&M? I have to pay rent every month not just annually 🤣

likesmart
like

More Posts

Hi folks, Could you please help me with the referral in JPMorgan Chase and Morgan Stanley for below experience and tech stack.

YOE: 5.4 years
Tech stack: Java, Micro service, Azure, Spring boot, Angular, Groovy

TIA !!

Anyone else getting guilt tripped after putting in their 2 weeks notice? My partner keeps talking about how our team was already drowning in work and now the other associates are going to have to take on my cases too. I do feel bad for them, but this opportunity with my new firm was too good to pass up! I'm trying my best to make sure all my cases can be transitioned smoothly, but that's all I can do 🤷‍♀️

like

What are the ratings in CGI for appraisal

Where can we see the new hire RSUs allotted?
Workday just shows the annual RSUs not the new hire RSUs or joining bonus.

like

What is Notice period in Accenture during probationary period?

like

Any recommended auto repairs in the East bay, CA? Need some touch-ups before turning in my leased VW GTI

like

Hi,
If anyone interested in NFT project HMU. Looking for partners

likesmart

looking for a referral to TikTok !! Any help is highly appreciated :-)))

like

Is there a home buying group for Seattle area?

like

Anyone who moved from NY/NJ to Seattle? I had some questions about how you feel about your move and transition.

like

Does NTT data pays variable pay that they mention in the offer letter as PEP(0-14%)?

Hey folks,
I got a mail from my manager to join
NTT DATA office. Can I ask for 3 months extension? Reason: my mother had a surgery and will need someone to take care.

like

Need 11♥️ for DM.
Please help

like
like

Hi, I have got offer from NTT, expected at least 9 LPA , how can I negotiate , have 2 years of experience in same domain (python & ansible) . Get selected for SRE Role. How much I can expect from them.

like

I'm trying to figure out how to pivot out of my current job. My department is in utter chaos, which has just become completely unmanageable. I'm looking for front-end web design work, and work from home. I am a strong designer and basically set up landing pages for large companies on a proprietary CMS in our company. If anyone knows of places I could apply? I'm not trying to reinvent myself as I do artwork on the side and would rather grow that business and get out of the chaos of fortune 500.

like

How much does an ACD creative can make at Facebook the factory ? Asking for a friend

like

How is SAP projects in IBM?

like

LTI is Hiring for below Oracle - BU positions

Need immediate to 30 days joiners only

Location: Bangalore/Mumbai/Pune/Hyderabad/Chennai

JDE CNC
YOE :4 - 10 Yrs
Skill : CNC

JDE Finance Functional
YOE: 4 - 10 Yrs
Skill : FUNCTIONAL-FINANCE

OCC (Oracle Commerce cloud)
YOE: 4 - 10 Yrs
Skill :OCC

Oracle Flexcube
YOE :4 - 10 Yrs
Skill: FLEXCUBE

Oracle CPQ CLoud
3-5 years of experience in Oracle CPQ Implementation & Support
location - Mumbai

Interested can Dm with job role

Post Photo
like

Should I be happy because I still have a job or should I be mad and sad because I didn't get a rise? I'm underpaid and got a 9k raise through 4 years of work

like

Additional Posts in Cyber Security Professionals

Hello Fishes,

Any references for Threat Hunting position in Pune?

If yes please do let me know......

like

Hi all,

I am looking for a job switch and have 5 YOE as Information security analyst. Pls help me with any referrals.

like

Sys admin (security) role in Zoho- chennai (hometown) with 6.5lpa
Or Information security executive role in Asian paints (9lpa)- Mumbai.
Which one should I choose. Please suggest your opinions.

like

Does anyone here has any suggestions on how to improve your LinkedIn profile and also your CV?
I am looking for a job in EU region.

like

Hi All, which is best company to work for cyber security employees?

What is the market range for a professional having 15+ yrs of experience into infosec? Location would be Bangalore.

Is anyone from Kroll or Security Brigade here?

Hi Folks!!

Having a total of 4YOE in IT, and specific in 2 years in cyber security, Can I apply for MNC companies ???


If yes, please suggest which company I should try this moment. YOUR SUGGESTIONS IS HIGHLY APPRECIATED ☺️

like
like

Hi guys
Has anyone attended
Nike for penetration testing role?
Need your inputs on something

Nike

like

Any contact of HRs/recruitment agencies that does hiring of security professionals in UAE? TIA

like

I have total 4.5 years of experience in pentesting
Certs: CEH, OSCP and CRTP

What should be my expected CTC? My current is 12.5L

like
like

Hello Fishies

I am currently working in an insurance firm for last 3.8 years as part of the senior SOC analyst.

Current CTC - 5.6 lpa
Skill sets - Incident Response, Threat Hunting
Currently based - Mumbai

This is my first company where I was hired as a fresher and moved up the ladder. While i am planning to move out, i realised i have no experience of the market standards for someone in the domain, How much are analysts in Blue Team SOCs being payed? How much should I expect?

like

Hi guys,
Would be great if I could get your suggestions on this.
I am currently having around 3yrs of exp in banking field but planning to switch my career to cyber security and in process of doing cpt and ceh certification, so will that be good enough to get into a job or is there something else I should be doing??

Thankyou!!

Hey fishes,

I am working as a cloud engineer (managing enterprise cloud for the organisation), some common things I am working on right now are, setting up cloud governance framework, implementing guardrails, enforcing policy etc. I want to switch into cybersecurity expert (specially for cloud) can anyone guide me though the path, the dos and don’ts etc.

Thanks in advance 😀

like

Domain, CTC, YOE

Eg IAM, 22, 6
Eg SOC, 18, 5

Company name optional

like

Hello fishes,

Can anyone reffer me for SOC Analyst?

I have an offer from E&Y.

New to Fishbowl?

Download the Fishbowl app to
unlock all discussions on Fishbowl.
That was just a preview…
Sign Up to see all discussions
  • Discover what it’s like to work at companies from real professionals
  • Get candid advice from people in your field in a safe space
  • Chat and network with other professionals in your field
Sign up in seconds to unlock all discussions on Fishbowl.

Already a user?
Login here

Share

Embed this post

Copy and paste embed code on your site

Preview

Download the
Fishbowl app

See what’s happening in your industry
from the palm of your hand.

A phone with Fishbowl app

Scan your QR code to download
Fishbowl app on your mobile

Download app

Sign up for free to view this conversation on Fishbowl

By continuing you agree to Terms of Use and Privacy Policy

Already have an account? Log in

Sign up for free to continue using Fishbowl

By continuing you agree to Terms of Use(New) and Privacy Policy(New)
Messaging rates may apply

Already have an account? Log in

For account settings, visit Fishbowl on Desktop Browser or

General

Legal