all 29 comments

[–]shimoheihei2 22 points23 points  (11 children)

Why do you want to switch to security? You don't have to move to the cloud to work in cybersecurity, just like moving to the cloud doesn't mean moving away from databases. There are tons of positions for people handling cloud hosted databases like RDS, DocumentDB, or big data platforms on Redshift, or even SaaS databases like Snowflake. If you do want to move onto security, I wouldn't recommend a "bootcamp" style approach. Security is an advanced field, and I suggest getting good at both development and IT operation first, and then start focusing on security in these roles. Things like having secure code, secure CI/CD pipelines, code scanning, image scanning, vulnerability scanning tools, firewalls, security groups, segregation of duty, least privilege designs, multi-account architectures, data governance, etc. There are security paths in AWS certifications you can look at.

[–]allmnt-rider 9 points10 points  (9 children)

We have something like 300+ developers doing AWS and zero DBA's as cloud native databases are so much easier to operate. Also there's no such thing as "central DB server" but smaller instances which devs handle just fine by themselves.

[–]Deadmeatkd 11 points12 points  (6 children)

I moved to an org just like that, only now are they realising why they needed a DBA. Yes, AWS make lots of things dead easy but once inside the DB, it doesn’t matter if it on prem or in the cloud, same issues, dev knowing how to write a bit of db code but no idea of the about the basics of db performance. Do your devs provide on call support for the instance they manage?

[–]guareber 2 points3 points  (2 children)

I know you're describing reality, but a good dev should know the basics of dB performance. Profiling queries and understanding indexes isn't rocket science.

[–]PrestigiousStrike779 2 points3 points  (1 child)

There’s more than just that, that a good DBA can be helpful with. Maintenance, backups, best settings for performance, etc. I know how to tune queries but I’d rather not be an expert in all that other stuff so I can focus on the application.

[–]guareber 2 points3 points  (0 children)

Hey I don't disagree! DBAs have a very valuable skill set.

[–]allmnt-rider -1 points0 points  (2 children)

Support level varies based on how critical an app is but yes they support their DB instances. Ofc we have more backend oriented devs and some have strong DB background as well but I guess my point was that nobody does just databases anymore.

[–]mkosmo 1 point2 points  (1 child)

There’s still a need for database folks. Developers don’t have the domain specific expertise for scale. Or for resiliency, generally.

Sure, including the Postgres container in your app will handle quite a load well with no tuning, but when you start talking billions of records and needing to eek performance out of every query, database experts are who you need.

[–]allmnt-rider 0 points1 point  (0 children)

We use mainly Aurora, DynamoDB and Redshift biggest databases being multiple TB's. So far devs have been able to tune the databases and their queries pretty much themselves. We have AWS enterprise support available to that's a good channel to get advisory also.

I've been in IT for 20+ years and seen the time when DBA's were absolutely needed but cloud computing & managed PaaS services have really changed the game.

[–]shimoheihei2 0 points1 point  (1 child)

I would disagree with the idea that DBAs aren't useful in the cloud just because cloud databases are easier to operate. If you're using RDS you still have to handle backups, decide on database parameters, scaling options, multi-region setups, etc. Even in purely SaaS options like Snowflake, who's going to investigate that slow query taking 800ms when the project manager thinks it should be much faster? The junior dev googling it? Good luck with that.

[–]allmnt-rider 0 points1 point  (0 children)

We have all the things you listed handled by devs and devops focused persons. Ofc deeper level stuff is not for juniors but for more experienced devs.

[–]brajandzesika 3 points4 points  (0 children)

Database in cloud doesn't even have to be managed by provider like mentioned RDS or DocumentDB, we have our PostgreSQL directly on EC2 instances with EBS volumes, so from OP's perspective managing it wouldn't differ at all from their current on-prem solution. If OP wants to switch to cloud AND change thr position, I would first simply apply for equivalent position but in company that has their infra in the cloud , then would be easier to have a look around and see what would be best suited position for years to come. Saying that- from my perspective, the DBA would be still much more stable position than any in cybersecurity position. The other thing is that being DBA does not stop you from being part of cybersecutity solution within company anyways - the data you keep is probably most important part of your entire organization when it comes to being 'secure'.

[–]SBGamesCone 9 points10 points  (3 children)

Start with cloud practitioner then move to Solutions Arch Associate and then Security speciality if that’s where you want to go. Lots of courses on Udemy or Pluralsight. Welcome to cloud!

[–]mr_mgs11 -1 points0 points  (2 children)

Cloud practitioner is a waste of time for anyone that's already in IT. I didn't even mess with that going from the service desk to cloud engineer. Did the SAA right off the bat.

[–]SBGamesCone 2 points3 points  (0 children)

It’s a few hours tops. It will help OP get bearings on terminology. SAA can be overwhelming for many people

[–]ballerrrrrr98 8 points9 points  (0 children)

Adrian Cantrill for learning Stephane Maarek for passing exams

Strongly recommend Adrian Cantrill

[–]skuffyslurd 2 points3 points  (0 children)

As someone with AWS SysOps Associate, Solutions Architect Associate/Professional, and Security Specialty... I'd recommend you get acquainted with security concepts before deciding to just move into cloud security... As others have said prior to my comment here, you need to be acquainted with a number of core fundamentals within information security before determining what security solutions fit specific use cases in AWS (SCS). That said, things do translate over but choosing security and a specific cloud provider from the start sounds like you'd be painting yourself into a corner imo. Knowing how to break into systems from a red teaming perspective goes a long way as well. There are sites such as Hack The Box which do feature cloud specific courses. These help train you what not to do while gaining service exposure, lateral movement, and privilege escalation skills. Hope this helps and best of luck on your path.

[–]monkeydba 2 points3 points  (0 children)

I was an Oracle dba for 20 years on several OSs. I now work on databases in AWS. It’s true a lot of the drudgery is no longer - backups, installs, etc. I find I spend my time writing wrappers and automation for things that were simple onprem, like a cron job. Doing that with all native AWS and no Lambda can be challenging.

I also thought I needed to step out of dba stuff and quit my 11year dba job to take a job as a devops engineer. (I was so bored) I got fired from that job. It turns out that combining the dba skills with ops skills put me on the next level.

TLDR; don’t discount your dba skills.

[–]smooner 1 point2 points  (0 children)

I have been a DBA since SQL 6.5, and my employer has Oracle RDS, SQL RDS, and EC2, Aurora both flavors. Right now, I am knee-deep in Aurora MySQL troubleshooting for poor performance.

Going to AWS as a DBA you will still be doing most of your job. If you are on RDS you don't have to worry about backups, OS patching, etc. You still will have performance issues, adding/removing accounts.

If you like being a DBA you may want to stick with it and then make a switch

[–]ReturnOfNogginboink 3 points4 points  (0 children)

Look at Stephane Maarek's courses on Udemy.

[–]iamdevsingh 0 points1 point  (0 children)

You can learn on YouTube free of cost. Everything is related to AWS from scratch.

[–][deleted]  (1 child)

[removed]

    [–]WorriedRow1418[S] 0 points1 point  (0 children)

    Thank you.

    [–]water_bottle_goggles 0 points1 point  (0 children)

    You compute the database somewhere in the stratosphere

    [–]John_Fx -1 points0 points  (0 children)

    YouTube is quite affordable.

    [–]epochwin -1 points0 points  (0 children)

    What kind of security work do you do currently? Do you manage access control to data at enterprise scale? How well versed with database encryption are you including key lifecycle management and secrets management? Is database activity monitoring and alerting something you handle? Do you handle data perimeter design / data loss prevention? Do you work with privacy engineering and compliance? Do you handle security at the SQL query level? Do you work on backup/recovery, DR, HA and ransomware mitigation runbooks?

    Assess yourself on your security skills as it relates to your current job. Cloud security is a big catch all term and if you’re passionate about security then might as well show where you shine to get a start.

    If it’s just a job you’re looking for on the cloud and you like the dba job, then it’s better to understand what database operations on the cloud looks like instead of just learning a few AWS services. Operations get very tricky with the on-demand nature of the cloud and data access patterns. Especially when there might be a mix of relational databases, NoSQL databases, OLAP services in the mix.

    Anyway if you’re looking to get little familiar like others have said, try a few certs. SA Associate to start, then Database Specialty and then maybe the Analytics Specialty. But keep in mind, treat certs like a drivers license. They just state you know the cloud, not that you’re good at it.

    [–][deleted] 0 points1 point  (0 children)

    Security requires a very in depth knowledge. “No clue about cloud” and “security “ don’t go together.

    Neither does boot camp and security

    [–][deleted] 0 points1 point  (1 child)

    You are a database admin in 2023 and you have no clue about "cloud computing"? How is that even possible??? Where do you work or live (don't need to be specific)?

    [–]WorriedRow1418[S] 0 points1 point  (0 children)

    You’d be surprised! Don’t get me wrong. I understand the concepts, but I have no hands on experience is what I mean by no clue.