Follow Mark on LinkedIn Follow @marknca on Twitter Follow marknca on YouTube
marknca

Mornings With Mark
no. // 0 0 0 4

Getting Started In Security: Post Certification

Subscribe to the podcast.

Watch the episode here

Join the discussion on LinkedIn

Tweet about this episode

Full machine generated transcript follows

Morning everybody. How you doing today? I'm in this episode of mornings with Mark. I want to talk to you about serve your second step step into getting started with me in the last few days. I got a security certification and I don't mean to sad because this is important to understand cyber security certifications.

Entry-level certification is not going to be enough to get you rolling in a certain level of an understanding of the security domain and that's absolutely important. Because I security certification. I'm as good as a part of a puzzle, but it's not the whole thing because mainly that's just testing supposed to be entry-level certs are simply testing your multiple choice answers to certain basic security question.

Okay, so it's not enough to say who is this person going to be good and do they have the principles behind a quick enough for me that make a real good cyber security professional. So I'm at the same time. Would you print you want to double up on the activities as far as proof points that you can handle a job in cyber-security mental model.

Can you take a security problem or take a general and break it down around the cyber security or privacy issues around? I think would be a good start again. This is just my opinion is running out of a particular vulnerability or security issue, whether that's a damn whether that's something very public in a privacy failure or a vulnerability process behind how it work generally how it fits into a larger context and putting that out there.

I'm on something. What is the HOV communicate through written word which is critical in cybersecurity and it also shows your thought process latest remote code execution vulnerability is a problem call out some of the challenges around me. Around the flying out of the patches in the development process against the potential impact widespread process.

If you do a couple of those and you have a nice little body of work and these are just for you for your own edification. I'm a nice little body work 2.2 not just for potential and help you learn you need to learn by doing in cybersecurity. That's very very critical.

If you don't have a perfect far more telling than saying I just got these for skirts. I can play that game experience. Security guard or I was a financial controller for a company or houses that I posted online to get feedback from the community. Also just as practice to show my ability to tackle a security problem and then to relate the perspective in the solution to our other stakeholders within the organization and because I'm just trying to get started as I thought it would be useful but I can explain why they're important and why we need to take action.

I think that's probably going to push you forward on more than getting another certification, especially if you're knocking on doors and finding not so great of a response. We talk about that another episode where you should get out their Network as much as possible to free meetups. Go to go to i c squared meetups go to b-sides.

Pretty much every major city. I'm in a lot of the smaller cities as well. I'm so it's it's never one thing that's going to get you started inside. It's something like an analysis does not have to be 50 pages reasonable time. It shows people that I can actually put pen-to-paper.

I can put the rubber to the road. I can do this and far more than just slightly certified. Morning everybody. How you doing today? I'm in this episode of mornings with Mark. I want to talk to you about serve your second step step into getting started with me in the last few days.

I got a security certification and I don't mean to sad because this is important to understand cyber security certifications. Entry-level certification is not going to be enough to get you rolling in a certain level of an understanding of the security domain and that's absolutely important. Because I security certification.

I'm as good as a part of a puzzle, but it's not the whole thing because mainly that's just testing supposed to be entry-level certs are simply testing your multiple choice answers to certain basic security question. Okay, so it's not enough to say who is this person going to be good and do they have the principles behind a quick enough for me that make a real good cyber security professional.

So I'm at the same time. Would you print you want to double up on the activities as far as proof points that you can handle a job in cyber-security mental model. Can you take a security problem or take a general and break it down around the cyber security or privacy issues around? I think would be a good start again.

This is just my opinion is running out of a particular vulnerability or security issue, whether that's a damn whether that's something very public in a privacy failure or a vulnerability process behind how it work generally how it fits into a larger context and putting that out there. I'm on something.

What is the HOV communicate through written word which is critical in cybersecurity and it also shows your thought process latest remote code execution vulnerability is a problem call out some of the challenges around me. Around the flying out of the patches in the development process against the potential impact widespread process.

If you do a couple of those and you have a nice little body of work and these are just for you for your own edification. I'm a nice little body work 2.2 not just for potential and help you learn you need to learn by doing in cybersecurity. That's very very critical.

If you don't have a perfect far more telling than saying I just got these for skirts. I can play that game experience. Security guard or I was a financial controller for a company or houses that I posted online to get feedback from the community. Also just as practice to show my ability to tackle a security problem and then to relate the perspective in the solution to our other stakeholders within the organization and because I'm just trying to get started as I thought it would be useful but I can explain why they're important and why we need to take action.

I think that's probably going to push you forward on more than getting another certification, especially if you're knocking on doors and finding not so great of a response. We talk about that another episode where you should get out their Network as much as possible to free meetups. Go to go to i c squared meetups go to b-sides.

Pretty much every major city. I'm in a lot of the smaller cities as well. I'm so it's it's never one thing that's going to get you started inside. It's something like an analysis does not have to be 50 pages reasonable time. It shows people that I can actually put pen-to-paper.

I can put the rubber to the road. I can do this and far more than just slightly certified.