How to get into IT Security?

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

I asked this question in another thread but i thought i would start my own so avoid a conflict... How does one break into security? If you cracked open the comptia books they want you to know certain things.. I know comptia say better to do n+ then sec+ but why is that?

Im hoping to get MCSE+Security when im finished but to be honest im having second thoughts.. i d/l some extracts of the 70-298 and 70-299 exams' books and they want knowledge of security too! What can i do to get a good foundation?

For those who have done any security exams how can i start? I looked around and one book which seems to have good reviews is the Cisco Press - First step to network security HERE
if someone could look at the topics this book covers and see if they will help me get foundations or if they know of a good book to get my started?

 

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

my main target at present has been to constantly reiterate to my manager and her manager my desire to get into security. it almost paid off a little too. They are planning on changing our password reset policy and i was told they would get me involved in it. Unfortunately its been put on hold at present.

coursewise im about as in the dark as you are. i plan to do sec+. perhaps move onto the MCSE certs and the cisco certs are always a hit.

Fergal

 

I don't think that there is any 'way in' really. You simply develop the skills as you career progresses.

For instance you may find that you are a Network Manager who has to secure his network from internal and external threats. Does that make you a security expert? No, it's just the person doing their job.

You will develop your skills further in the security field when you are trying to carry out what I mentioned above, and may find that you want to develop further, i.e. read further into it or get a cert in security, but you are still not a specialist. All it shows is that you have an interest in security (as all net admin's should).

I think that it is only once you are firmly established with a broad set of skills that you can branch off and become a "specialist".

Within a small organisation for example you may have a single person who looks after the IT, this person has to be the specialist at everything. However in a large organisation there may well be one person who is solely responsible for the security aspects of the enterprise. But what is security? This person could simply make sure AVP is upto date and that password security is enforced.

I guess ultimatley what I'm trying to say is don't set your sights on being something that may not necessarilly exist.

 

okay so what would be a good start into security topics? the mcse courses?

 

Why not something like the Security+

 

I know nothing about the M$ certs (yet), but my view is that if you are going to do computer/network security then you should know networks backwards.

CompTIAs suggestion of doing N+ before sec+ is (imho) a good one, and there are some simple security related stuff that appears in both A+ and N+

Harry.

 

Just a further thought:

What is a Security Specialist?

Here's my thoughts:

Someone who knows Networking and Systems Admin inside out (MCSE and CCNA/P Level)
Spends 100% of their time applying security, i.e. configuring firewalls, configuring policies, etc.
Would have to be working as a consultant for an IT company, not simply in house.

 

By being really sneaky and unethical???

 

I'd be really interested to hear a certain Mr Phoenix's input on this .....

 

actually i was hoping he could pop in and shed some light on this.. i been researching all day yet i still cant find an answer!

 

found an interesting book you might find interesting. From Cisco Systems no less.
http://www.ciscopress.com/title/1587200996

 

Looks like a good book to me