null
Additional Posts
Pro
How do you manage liking a senior at work?
90 more minutes until disappointment!
New to Fishbowl?
Download the Fishbowl app to
unlock all discussions on Fishbowl.
unlock all discussions on Fishbowl.
{
"media_type": "text",
"post_content": "My brother wants to break into cybersecurity/information security. What is the best way to get started learning the material? A certificate? Bootcamp? LinkedIn learning you get familiar?",
"post_id": "628cf130447b520025a2f3e4",
"reply_count": 9,
"vote_count": 2,
"bowl_id": "55375ce690f5eebe1d2a0f88",
"bowl_name": "Tech",
"feed_type": "crowd"
}
Download Fishbowl to see what others are saying
Send download link to your phone
Rising Star
I was a software engineer before I become a security engineer. So I had a good background tech wise. I found learning about Risk and mitigation strategies was very beneficial for me to learn.
For any tech related field that someone wants to break into, I always recommend seeing how far you can get with just self teaching (be it a book or just what you find online).
In my own journey I bought a year out of date book that covered taking the CISSP (a difficult certificate). It gave me a basis and things to google for further research with my near zero background of cyber security in general. Thanks to that I was able to start to dive into compliance and compliance tooling for the company I was at at the time.
Regardless of what your brother does, tell them best of luck.
I'd start with the free resources and then work my way up. Assuming your brother already has a degree of some type, a certificate program from a named institution is a good booster to get in the game. But, no reason to spend $$ if the interest doesn't hold after absorbing a lot of the free resources. Another route also assuming he is already in a tech role is to do a rotational learning role in that area within the company he already works at. It's kind of like an internship. Most the people in this field have ended up in it in a sideways fashion.
I was in the military and had a crash course in cyber BUT I’d recommend starting off by looking at the information in CompTIA’s security plus certification. It’s pretty high level but a great place to start and there’s lots of websites that have free resources. This playlist on YouTube for example: https://youtu.be/9NE33fpQuw8. Alternatively, there’s cybrary.it that also has a plethora of video resources. You’ll have to pay for practice tests and labs but the videos are pretty good in general. Also if you check Reddit, subreddits like r/CompTIA or r/cybersecurity regularly mention sales on e-books as does PearsonVue. Sans GSEC is pretty good but ridiculously expensive by comparison.
After getting your basics down, you start to kind of specialize since cyber is a pretty large field. There’s security engineering, compliance, auditing, penetration testing, etc.
Great, thanks! I'll pass on the resources!
Not in sec myself, but did a boot camp through Codepath just cause it was free for me. Per the student slack channel, seems like a bunch of people got offers
Yeah I thought starting with the free material first is key, and then move up from there. Thanks!
Have him watch Mr. Robot
.
.
.
.
(joke)
but not really
I was in the military and had a crash course in cyber BUT I’d recommend starting off by looking at the information in CompTIA’s security plus certification. It’s pretty high level but a great place to start and there’s lots of websites that have free resources. This playlist on YouTube for example: https://youtu.be/9NE33fpQuw8. Alternatively, there’s cybrary.it that also has a plethora of video resources. You’ll have to pay for practice tests and labs but the videos are pretty good in general. Also if you check Reddit, subreddits like r/CompTIA or r/cybersecurity regularly mention sales on e-books as does PearsonVue. Sans GSEC is pretty good but ridiculously expensive by comparison.
After getting your basics down, you start to kind of specialize since cyber is a pretty large field. There’s security engineering, compliance, auditing, penetration testing, etc.