People who started in IT audit and compliance, where are you now and what did you do/ have to do, to get where you are?

like
Posting as :
works at
You are currently posting as works at

I've hated IT Audit and have thrown myself at OSCP and HTB; I'm hoping to make the transition to a pentest/red team role soon.

like

Nice, good luck. IPSEC is good for retired HTB vm's that are similar to OSCP. The cyber mentor has some good videos if you are just getting started as well.

like

Following!

helpful

I started in IT audit, then after making Senior, jumped ship to industry doing Cyber GRC work (third party risk, compliance, etc.). After a few years an interesting opportunity came up so I jumped back into consulting. Now I’m doing Cyber work in the context of M&A transactions (due diligence, integrations, and divestitures).

like

EY2 - There was a bit of a slowdown when the pandemic first hit, but projects ramped back up and the current pipeline looks strong. I don’t think we have anyone on the bench in my niche group.

What are you trying to do? There’s a lot of paths within cyber.

That's a great question that I am still trying to find the answer to everyday. At the moment, Cloud Security and IAM stand out the most to me. I would like to move into more design and implementation type work, in technology and strategy.

Deals SME

Related Posts

Hi, any F here from Philly? 33 M

like

Last day most clients are doing deals - hope all the execs and partners out there finish well (unless your competing with my bid)

funnylike
like

de Blaiso says we’re on track to hit orange zone of restrictions post Thanksgiving which means no more indoor dining among other things.

The metric they are using is % positivity rate.

My question is this - is this a fair metric and if not what is a better metric to compare if it’s getting worse and we need social controls?

I only got tested when I traveled out of state for wedding and thought I was at a high(er) risk for exposure. Tested positive but I was already expecting that. (Contd)

like

Does anyone have a website or portfolio of projects they have managed? I’m pivoting into Digital production and want to get a head start on how I showcase this for myself. Would love links and examples!

like

Had a final round Friday that I think I did okay on and the recruiter asked if I had time to speak today. Feeling nervous because I’m feeling as though it could be a rejection. I know they had another candidate in the pipeline that hadn’t finished the process yet so I don’t think it’s an offer :/

like

Does anyone know of any credit shops in Austin looking for people

like

4 YOE in Federal consulting. Currently a C at $85K and just received a 5/5 performance review with super positive feedback from my team and leadership. Noted that I was the top performer and was doing stuff at a senior level.

How realistic would it be to break $100K+ in jumping elsewhere? Either at C/SC level. Might be a silly question but I want see others perspective. TIA!

like

Hey everyone! I'm working on a research project for my doctorate and am in the test phase for a pretty simple interview about experiences with leaders. It's only four questions and takes about 20 minutes to talk through. Would anyone from outside the US be interested in participating? I can't give you a charge code, but I can give you my gratitude!

like

Hi,

Can anyone please tell me about the Interview process of a Data Scientist I/II in Amazon? What do they expect? And what is the average pay for both of them?

like

Looking to join Holcim a cement company as an Electrical Engineer I in Alabama.
What is a fair pay with roughly 2 years experience and an EIT license.

Is $80,000 fair to both me and the company. Since I'm really on the cusp of being an Electrical Engineer II?

like

Just found out this morning that my H1B RFE got approved! Submitted the RFE documents on 11/17, approval on 12/4. I found out from the USCIS website. My lawyer hasn’t told me anything.

like

Favorite science show to watch as kid?

like

Hey! Can anyone help me to calculate an approx in hand for the below structure.

Post Photo
like

Is it possible to become a community manager without a degree?

like
like

Hi everyone, I'm starting the interview process for a position in sales strategy and operations and have several questions if anyone is willing to have a quick chat. Thanks!

like

Would anyone be willing to share their resume? I’d love to see how people with 10+ years experience are framing up what they do in strategy.

likesmart

I have another question - I’ll be going to a mid size ID firm that also does crim defense, family, environmental, and more. I get a bonus if I bring in business. How does that even happen?

My kitten is very much one of the dogs. While my old girl in the back is not amused.

Post Photo
likefunnyuplifting

Additional Posts in Cyber Security Bowl

What’s it like working at Mandiant?

like

Is Deloitte hiring in the cloud security practice?

like

Thoughts on the future of Cyber Threat Intelligence as a specialization? Is it a discipline that will continue to grow?

like

For those who have passed the CIPM exam, what is it like (and how does it compare to the CIPP/US exam)?

Anyone from Unit 42 willing to provide a referral? Happy to share my resume/background

like

What study material is recommended for Security+? Asking for a friend!

like

Any general insight on WLB between PWC and KPMG regarding cyber practices

like

Received offers for cybersecurity consulting as a new grad from KPMG and EY. EY’s total comp was slightly higher than KPMGs. I was wondering which company will provide a strong technical background for me to jumpstart my career, thanks!

like

Has anyone worked at Protiviti’s cybersecurity team? Looking into positions there and got reached out to by a recruiter for cyber. Looking to avoid any type of IT audit and staff aug work though.

like

Can someone shed light on the culture, pay, work, etc at EY TSA Cyber for a senior Consultant role?

like

Anybody at Crowdstrike open to a discussion? Currently a Senior Consultant in an Advisory practice.

funny

Been stuck in the framework side of cyber doing assessments and so far every new project or company that says they’re going to offer me a different path, i end up in the same place. Is it hard to pivot to a different career path once you have a lot of experience in one area?

like

How are DBA privileges provisioned within AWS? How do you prevent SOD conflicts???

like

Any good security related sub redit pages that we folks can follow?

like

Anybody that works in Penetration Testing and can tell a bit how it is, what is your day-to-day and do you recommend it?

like

EY TAS still hiring? 5 years In Deloitte Cyber specializing in ITRM work. Interested in due diligence.

like

Mcafee DB Security Virtual Patching as a compensating control for Oracle DBs that can no longer be patched - lots of PII..sufficient compensating control..thoughts?

Everyone says that getting a Master's in cyber isn't worth the time/money. Certs are better. But surely an MS in cyber could benefit in some way. In what career path would a degree like this help?

like

Interested in opportunities in pen testing. Anyone who could give me more information/a referral?

New to Fishbowl?

Download the Fishbowl app to
unlock all discussions on Fishbowl.
That was just a preview…
Sign Up to see all discussions
  • Discover what it’s like to work at companies from real professionals
  • Get candid advice from people in your field in a safe space
  • Chat and network with other professionals in your field
Sign up in seconds to unlock all discussions on Fishbowl.

Already a user?
Login here

Share

Embed this post

Copy and paste embed code on your site

Preview

Download the
Fishbowl app

See what’s happening in your industry
from the palm of your hand.

A phone with Fishbowl app

Send download link to your phone

OR

Scan your QR code to download
Fishbowl app on your mobile

By continuing you agree to Terms of Use and Privacy Policy.

Messaging rates may apply

Download app

Sign up for free to view this conversation on Fishbowl

By continuing you agree to Terms of Use and Privacy Policy

Already have an account? Log in

Sign up for free to continue using Fishbowl

By continuing you agree to Terms of Use(New) and Privacy Policy(New)
Messaging rates may apply

Already have an account? Log in

For account settings, visit Fishbowl on Desktop Browser or

General

Legal