IT Certifications and Careers (Official Discussion Thread)

[Mainevent_7]

I swear some of these position these recruiter are reaching out to me for, I'm super under qualified for. I had 3 phone calls from recruiters yesterday. One of the recruiters wanted me to relocate to Erie, PA for a DLP manager position. The other was from a big 4 firm and he told me trying to get a salary of 90k+ might be a stretch. The last recruiter actually set up a interview for later this week, but I have no interest in a job 50+ miles one way from my house.

My issue is that I'm doing alot of FISCAM, RMF and NIST security audit work. I'm trying to get into something more technical like IR, vulnerability assessment and management. How can I make that switch when I don't have any actually work experience in those areas? I can program and I've done a few CTF in the past.

 

[↓R↑LYB]

I swear some of these position these recruiter are reaching out to me for, I'm super under qualified for. I had 3 phone calls from recruiters yesterday. One of the recruiters wanted me to relocate to Erie, PA for a DLP manager position. The other was from a big 4 firm and he told me trying to get a salary of 90k+ might be a stretch. The last recruiter actually set up a interview for later this week, but I have no interest in a job 50+ miles one way from my house.

My issue is that I'm doing alot of FISCAM, RMF and NIST security audit work. I'm trying to get into something more technical like IR, vulnerability assessment and management. How can I make that switch when I don't have any actually work experience in those areas? I can program and I've done a few CTF in the past.

Recruiters most of the time throw shyt on the wall and sees what sticks. I get emailed tons of gigs I'm not qualified for but I just ignore them.

If you wanna get in the VM space, start learning all of the vulnerability management tools that you can get access to (Nessus, Qualys, Backtrack/Kali, etc) and get familiar with the methodologies around vulnerability management. Also get your CEH at a minimum since those gigs will typically require it.

Then start applying to VM gigs that require very little experience. You might have to take a pay cut for 6-12 months but after that first year it should be pretty easy to start getting those roles.

Also doing VM fukking sucks. The shyt is a god damn headache breh

 

[↓R↑LYB]

I read through this entire thread this past week and this man was on to something

I know for 100% fact these indians look out for each other like what he's describing below

Me and my boy tried starting a recruiting firm but we really wasn't sure what the fukk we were doing and ended up saying fukk it. We couldn't find any place to give us the necessary insurance we needed.

If any of y'all are interested in doing something (and you're actually serious and willing to put some paper up) let me know.

 

[platinum f1a$k]

Me and my boy tried starting a recruiting firm but we really wasn't sure what the fukk we were doing and ended up saying fukk it. We couldn't find any place to give us the necessary insurance we needed.

If any of y'all are interested in doing something (and you're actually serious and willing to put some paper up) let me know.

I am. what area are you in?

 

[platinum f1a$k]

Just got paid from my remote gig

Finna be a hot summer brehs

A nikka just hit 13k/mo

EDIT: Just saw how much I'm paying in taxes per month

Which specialties are most in demand for remote gigs? I'd really like a remote gig right now!

 

[Mainevent_7]

Recruiters most of the time throw shyt on the wall and sees what sticks. I get emailed tons of gigs I'm not qualified for but I just ignore them.

If you wanna get in the VM space, start learning all of the vulnerability management tools that you can get access to (Nessus, Qualys, Backtrack/Kali, etc) and get familiar with the methodologies around vulnerability management. Also get your CEH at a minimum since those gigs will typically require it.

Then start applying to VM gigs that require very little experience. You might have to take a pay cut for 6-12 months but after that first year it should be pretty easy to start getting those roles.

Also doing VM fukking sucks. The shyt is a god damn headache breh

Thanks for the heads up. I ultimately want to get into pen testing but all the sweet gigs want you to have the OSCP. I thought getting into VM would be a stepping stone into pen testing, unless you know a better route? I've used /backtrack/kali before, but it so many tools available to use, i get overwhelm sometimes. I just downloaded Nessus on my computer last week and played around with it.

 

[↓R↑LYB]

I am. what area are you in?

Atlanta. Have you done any recruiting before?

Which specialties are most in demand for remote gigs? I'd really like a remote gig right now!

I'm in security so the gigs I get are usually security gigs. Check flexjobs/indeed and look for remote gigs

Thanks for the heads up. I ultimately want to get into pen testing but all the sweet gigs want you to have the OSCP. I thought getting into VM would be a stepping stone into pen testing, unless you know a better route? I've used /backtrack/kali before, but it so many tools available to use, i get overwhelm sometimes. I just downloaded Nessus on my computer last week and played around with it.

IDK how much experience you got but the OSCP is a heavy cert and very technical. You can probably find the videos/books for the course on torrent sites. That's what I used when I was studying for it.

First thing you should do is get your Security+/CISSP, then get your CEH. Also try setting up a lab and learn how to compromise systems.

There tons of videos on YouTube showing you how to use the various tools on Kali. Start there.

 

[Mainevent_7]

IDK how much experience you got but the OSCP is a heavy cert and very technical. You can probably find the videos/books for the course on torrent sites. That's what I used when I was studying for it.

First thing you should do is get your Security+/CISSP, then get your CEH. Also try setting up a lab and learn how to compromise systems.

There tons of videos on YouTube showing you how to use the various tools on Kali. Start there.

Good looks dropping gems again.
I have a little less than a year worth of actually work experience. I do have my Security+ already.
I was torn between getting my SSCP or CEH but I think I will go with CEH since I want to eventually try the OSCP.
What kind of computer do you run your labs on?

 

[↓R↑LYB]

Good looks dropping gems again.
I have a little less than a year worth of actually work experience. I do have my Security+ already.
I was torn between getting my SSCP or CEH but I think I will go with CEH since I want to eventually try the OSCP.
What kind of computer do you run your labs on?

Use virtual machines and just load up VM's of different OS's.

Also watch some videos on how to use metasploit then check out the site below. It has known vulnerabilities for various OS's and applications.

Exploits Database by Offensive Security

Setup a VM with the susceptible OS/application, and use metasploit to compromise your VM.

If you know how to successfully compromise a vulnerable system, then you should be able to understand how to defend from that vulnerability.

And I'ma start charging y'all nikkas for all this game im dropping

 

[Flykid567]

Hey IT guys wassup. I have a few questions.
1. I'm going to school for Information technology and I just wanna know how useful that is in the IT field vs something like computer science
2. And how do you come go about getting certs? I skimmed through on here and folk was saying just google them and they'll pop up in your local area.
3. How hard would you say computer programming is in your opinion

 

[Mainevent_7]

Hey IT guys wassup. I have a few questions.
1. I'm going to school for Information technology and I just wanna know how useful that is in the IT field vs something like computer science
2. And how do you come go about getting certs? I skimmed through on here and folk was saying just google them and they'll pop up in your local area.
3. How hard would you say computer programming is in your opinion

1. drop the curriculum in here. My degree was CIS but I took the same computer classes are the Computer science majors.
2. It really depends on what you're trying to get into. Once you figure that out just do some google search for certifications in that area.
3. If you're in school, it really not that hard. You have professors, TA and your classmates to help out if you're struggling. I made it harder on myself in college cause I wanted to party instead of studying.

 

[Mainevent_7]

Use virtual machines and just load up VM's of different OS's.

Also watch some videos on how to use metasploit then check out the site below. It has known vulnerabilities for various OS's and applications.

Exploits Database by Offensive Security

Setup a VM with the susceptible OS/application, and use metasploit to compromise your VM.

If you know how to successfully compromise a vulnerable system, then you should be able to understand how to defend from that vulnerability.

And I'ma start charging y'all nikkas for all this game im dropping

you really should. Cause I would definitely pay.

 

[↓R↑LYB]

you really should. Cause I would definitely pay.

Real money or Coli cash

 

[Raheem95]

Real money or Coli cash

can i pay you in coli cash ?

 

[Mainevent_7]

Real money or Coli cash

take your pick.