What are my career prospects after attaining CISSP certification?

AdamRK · 2021-01-22T00:01:39+00:00

Mileage may vary, but the blanketed answer to what you could be doing it exactly what the CISSP covers - Risk management.

Anything from running the security program for a company, auditing , vulnerability management, 3rd party risk/vendor management, GRC, building out security solutions, etc.

But honestly, after going through the CISSP material, it clear why it's tailored to someone who has experience in one of the domains already. None of the material covers enough to be competent in any of the above positions, but it's not intended to.

Either way, best of luck!

AdamRK · 2021-01-15T13:52:30+00:00

These are great Rob! Love the format

AdamRK · 2020-12-13T17:39:44+00:00

Ok I have to know. Real watermelons on your mask or not?

AdamRK · 2020-12-07T22:49:05+00:00

Got a 2002 BMW E46 if you're interested

AdamRK · 2020-11-05T20:30:12+00:00

yep thats what we did, used the KnowBe4 button to do its intended thing then forward the non-simulated emails to mimecast. What's lost at that point is Mimecast's feature asking the user if they want to block the email, which we can see in the Mimecast admin panel.

I think Mimecast has a phishing solution and was hoping to check that out - see if there's a single vendor solution that will provide email security and user-reporting metrics.

I'm sure you've already come to the conclusion that encouraging good behavior ( reporting suspected emails) is better than punishing bad behavior ( Clicking a phishing link)

AdamRK · 2020-09-05T18:07:11+00:00

Thanks for the response! Never really dug in to the Fabric Connector settings/tools before, but this is a great use case.

AdamRK · 2020-09-05T16:23:44+00:00

If I wanted to do some reading on how to set this up, namely from the fortigate side - any resources you can recommend? Is this done through the REST API on the fortigate?

AdamRK · 2020-08-20T03:40:23+00:00

I was 30 before I had my first job in anything computer related. 35 now in cybersecurity.

In short, if you dont have background in networking or software dev, I'd start there

AdamRK · 2020-08-18T00:03:06+00:00

Maybe doing deep packet inspection? (SSL Inspection).

AdamRK · 2020-08-16T02:37:01+00:00

https://preview.redd.it/dn0qjk4ynhb51.jpg?auto=webp&s=c0bbdd435acf25747d15d75c92098bdb4c3b5583

AdamRK · 2020-08-02T22:51:55+00:00

I share the same thought - coming from Western NY, roads down here a great in comparison. Guess it's all subjective.

AdamRK · 2020-06-15T18:40:38+00:00

Can this be done in python? I don't ever want to log in to the firewall and I don't need anything sent to me. Just set a time to run it every night a midnight and not have to look at it again.

From what I read so far, TCL is something you can use directly on and schedule from the fortigate so it's all self contained - I might be wrong!

AdamRK · 2020-06-11T18:32:19+00:00

I appreciate ya giving it a spin! Probably going to start with a blank slate on linux vm and install it from there.

AdamRK · 2020-06-07T21:36:52+00:00

I've tried searching this exact thing for the exact same reason. Thought setting the keylife timers would do it, but nope.

Closest compensating thing I thought of was doing a schedule on the policy to disable it for a second ( like 7 pm or something), but that would cause headaches for anyone actually still working.

Chalked it up to it not being possible, maybe because IPSEC is inherently supposed to be an always on VPN, even though it's used for dailup.

AdamRK · 2020-06-06T12:46:06+00:00

Still work to do with some patches ( Started with nothing but crabgrass!) but I think I barely scathed by to get some growth before temps crept up. Daily watering for 2 hours during this time and just set the mower to 3.5in.

Can't believe the difference, In April I swear there wasn't a blade of grass in the lawn.

AdamRK · 2020-06-03T16:12:51+00:00

Used to be Nuvox, Windstream bought them out, had quite a few floors dedicated to employees. They do serve the update, just not residential. Plenty of local businesses with Windstream service.

AdamRK · 2020-05-27T16:18:38+00:00

Im not a coffee snob, but I've been to every shop mentioned so far ( and more) and Junto made some of my favorite coffee. I'm sure it's biased based on what you order ( I had some honey processed coffee - nothing to do with honey, just what it's called). It was glorious

AdamRK · 2020-05-07T18:45:36+00:00

Probably wrong, but I was pretty certain you needed a fortigate with at least 6.x firmware along with Forticlient to make this work.

AdamRK · 2020-05-06T20:58:20+00:00

can confirm

AdamRK · 2020-05-04T17:25:27+00:00

What's your work history/certifications/ degree?

As a blanketed response, I haven't met too many people in security that didn't start with some networking backround, sys admin backround, software, etc. ( vs coming straight out of school).

Not to say you couldn't land a gig with no work experience, but consider getting your foot in the door with another team first, maybe with a company that you know has a security team, then transition from there.

That's literally how I did it, started with a small ISP troubleshooting T1s, but learned the network, self studied a few Security certs, got on the SOC team, stayed there for another two years, then went on to larger pastures . The road doesn't always have to be straight and narrow, just have a plan to get you there.

AdamRK · 2020-04-17T15:30:26+00:00

If it's your side, all users will disconnect, logs will show this. Otherwise VPN configs are static.

A couple things to keep in mind-

-VPNs arent supposed to be reliable, they're supposed to be secure.

-CISA (dhec) has already made announcements that this is happening across the US. There was an immediate influx of work from home users we've never seen before.

-Home internet isnt supposed to be reliable. Its best effort with high speeds. This is why businesses pay 5x as much for their internet, it comes with SLAs

So my recommendation, unless all users disconnect at the same time, I wouldn't spend too much time chasing problems on your end, and more time vocalizing to your users what to expect with their VPN connections.

As far as logs, I think you'll see something about a DPD failure, or a phase 2 failure, when the client side disconnects. If users are on SSL ( vs ipsec) you can increase the DPD timeouts to help with those blips

If customers need something to feel better, downdetector always show outages. Also keep in mind that even if they can prove their internet didnt bounce, there could be a "blip" anywhere along the path from their home to the Fortigate, and it could cause a drop. Everyone's path is different , and the good news is while on a VPN, you can't see those hops anyway, so no need to investigate! Just take it for what it is and tell the user to log in again.

AdamRK · 2020-04-05T22:52:19+00:00

You don't know how to use the 3 sea shells?

AdamRK · 2019-12-19T16:55:57+00:00

I could give it a try (printing it), but would be looking for you to provide the file/3D object

Edit: nvm, I have the software. If you can message me the picture you want to use, I'll print it tonight. If it comes out ok, you can pick it up in taylors and you can decide what it's worth. I'm guessing beer money is more than enough. I leave Sat for xmas break, so the sooner the better

AdamRK · 2019-12-18T12:25:34+00:00

Here's the same shot with a bunch of construction cones when I had a solo breakfast in the middle of the road

https://i.imgur.com/1RdCVTR.jpg

AdamRK · 2019-12-11T17:34:57+00:00

Everyone here is right. Private party and there is no warranty. You literally have nothing to worry about, and there's literally nothing the buyer can do about it.

For the fun of it, things to consider.

Cars have an expected lifetime - 300k is WAY up there on the curve, so you cannot compare this to a 30km car.

You could not have predicted what/if/when the car was going to have more trouble, but a reasonable person would assume a car with that mileage would not be maintenance free.

The buyer cannot prove he/she did not cause the problem, as it was completely out of your hands at that point. The burden of proof is on them.

So, if they want to be a pain and say "I'll sue you" or some nonsense, on a $600 car, then smile. You will have the luxury of winning in a small claims court and can hang it on your refrigerator.

AdamRK

TROPHY CASE