HOW DO I GET INTO CYBERSECURITY? (lemmy.ml)

submitted 11 months ago* (last edited 11 months ago) by [email protected] to c/[email protected]

8 comments fedilink hide all child comments

I know this may be a very general question, but there are so many resources I don't know where to start.

I'm afraid with the free TryHackMe plan I'm limiting myself a lot.

I know portswigger trining, is it better than TryHackMe?

Am I better off starting directly with CTFs? If yes, which is the best to use? (overthewire, hackthebox ...)

Is roadmap.sh reliable?

How important are the certificates? I am a tech illiterate but never cared about certificates.

Or as a last resort, is it better to start directly with hackthebox?

top 8 comments

sorted by: hot top controversial new old

[-] [email protected] 6 points 11 months ago

I am a former enterprise architect in the cybersecurity space as well as a former director of cybersecurity operations and now own a cybersecurity consultancy.

My best advice is to ignore the tools for now. Understand the concepts of cybersecurity across all domains you can - from endpoint protection to privileged access management.

You can pick up a lot of this during the prep for certifications like CompTIA’s or CISSP.

Then whatever you find yourself most passionate about, find an entry level job in that discipline and that can be a way of starting “real world” exposure to the rest.

I hope this helps in some way, and best of luck!

[-] [email protected] 1 points 11 months ago

It will help me to get into Offensive security? Or just an entry point to proceed using "tools"

[-] [email protected] 1 points 11 months ago

It would seem best to understand both offensive and defensive aspects of security, which, of course, is based on the fundamentals. There are no shortcuts to download a tool and become anything in Cybersecurity space because people who understand the fundamentals can easily counter most “amateur” attacks.

For example, if I hire somebody interested in a certain type of security position, my first question will always be the opposite… If you want to attack X, how would you defend it? and then how would you circumvent that defense, etc.

[-] [email protected] 2 points 11 months ago

I wrote this up a while ago and you may find it useful - https://shellsharks.com/getting-into-information-security.

[-] [email protected] 2 points 6 months ago

I came across this today. This is excellent. I've already shared it with 2 people I know could benefit from it. Thanks for such a great write up.

[-] [email protected] 1 points 6 months ago

Thanks for sharing and glad you liked it!!

[-] [email protected] 1 points 10 months ago* (last edited 10 months ago)

Certs + 5 yr exp are autohire / name your price.

General advice is try to find a gig that will pay for your edu & certs so that both you and your employer have skin in the game.

Also keep your credit impeccable.

[-] [email protected] 1 points 10 months ago

What's the relationship for credit

this post was submitted on 16 Aug 2023

0 points (50.0% liked)

/c/cybersecurity - Cybersecurity News & Discussion

2036 readers

4 users here now

A community for technical news and discussion of cybersecurity and closely related topics.

founded 4 years ago

MODERATORS

[email protected]