how do you get into cybersecurity?’

-

 Lately, more and more people are asking this exact question. And well, the answer is that there are hundreds of ways because cybersecurity is a VERY general term.

There were great answers pointing out the importance of basic programming, web development, and database knowledge. And yes, it is excellent, BUT these alone won’t build you a career in cybersec. What will then?

My first suggestion would be to research different career paths and see what resonates the most with your skills and desires (offensive/defensive cybersecurity, or maybe research and audit). And here are more practical advice on what exactly to learn.

NOTE: No matter what area you choose, start by doing the following:

  • Learn about different Operating Systems. It is the basics to know the distinctive features and peculiarities of each OS.
  • Discover Computer Networks. You must know how routers, firewalls, ports, and protocols (SSL, TLS, IP, TCP, UDP, MAC, etc.) work.
  • Read more on Web Applications. You can’t skip learning how the HTTP request and response work and the security response headers (CSS, CORS, HSTS, X-Frame, Referrer, etc.)
  • Get an understanding of common security frameworks. Start with OWASP (Open Web Application Security Project), MITRE ATT&CKSTRIDECVSS (Common Vulnerability Scoring System), etc. This is relevant for being in the context and following the industry standard.
  • Check how the Sigma language works. It is a standard of cybersecurity that is getting more and more popular.

Resources for you to learn from: GCF Global, Linux Journey, Udemy, LinkedIn Learning, Tutorials Point, Cryptography & Network Security by Behrouz A. Forouzan, Developer Mozilla (for Web Applications), OWASP, Microsoft Docs (for STRIDE), ATTACK MITRE, and First Org (for CVSS.)

If you want to know more about a specific career path, feel free to ask me. Cheers!

Comments

Post a Comment

Popular posts from this blog

As a beginner in competitive programming, what coding habits should I focus on which might help during timed competitions?

-
  Competitive Programming is a skill which takes a lot of time to sync in. Performing good in timed competitions require a lot of practice, which trains your mind to work faster in reaching the desired algorithm. Here are some habits I would suggest, which helped me during my competitive programming journey: Always read the question carefully multiple times, to avoid misinterpretation of the question and ultimately a wrong submission leading to penalty :p Always use  Pen and Paper  to crack the logic of the question first. Dry run  all the corner test cases you are able to think off, before you start coding your logic. If your code successfully runs on the sample test cases, never conclude that they are enough to get an AC(Accurate) :p Be sure about whether your logic is 100% correct. Last but not the least, practice as much as possible in limited time,  practice is the key to success. What do you think helps the most? Let me know in the comments section 😉
Read more

What is the benefit of ranking in codeforces?

-
  If you mean an official Codeforces Expert,  defined as a Division 2 contestant with a rating between 1600 and 1899, then here’s the benefit:   it doesn’t take much practice to get to that level, but getting there will teach you more about solving programming puzzles than what most people applying to software companies know. If you’re using “expert” in the traditional sense of a highly experienced Codeforces contestant (maybe someone above 2400 rating), then the benefits are less practical. Of course it’s useful to be that kind of expert for the sake of interviewing. But the time required to get to that level probably isn’t worth it for that purpose alone. Other potential benefits include bragging rights, the excitement of competition, and learning interesting things about problem-solving techniques, math, and algorithms.
Read more