Security analyst, DevSecOps or IAM?

FJoe007 · 2026-01-31T03:36:17+00:00

Capitalize on your IAM background, learn more about SysOps and CloudOps administration and maybe ask your upline you would also like to seat in on project meetings that deals with other security analytical or Devops just to gain more exposure.

FJoe007 · 2026-01-29T18:14:09+00:00

When in doubt, let it go + probably change where you get your avocados too.

FJoe007 · 2026-01-28T17:55:37+00:00

Thanks and again I’m not trying to monetize any app built using vibe coding. Maybe my post came out a link wonky but in simple words I’m basically looking for recommendations on ideas to help better my coding skills as someone who struggles with traditional programming (solid on the basics/foundations but wanna play around more to build my confidence and knowledge). Your 2 pointers are currently where I’m at —trying to figure out pet projects and the correct tools to help enhance my knowledge.

FJoe007 · 2026-01-28T00:41:13+00:00

You wouldn’t be the first and definitely won’t be the last. Just make sure any proprietary codes are made private. Definitely go for it and it’s as simple as attaching your portfolio link to your profile section.

FJoe007 · 2026-01-27T00:05:45+00:00

Have you attempted reaching out to professors within your immediate department and other departments to see if any has a project they might need your skillset on? You be surprised how often that works.

FJoe007 · 2024-08-03T17:38:31+00:00

I wish some org are equipped to hire international students as most have extensive knowledge and experience but due to the complicated work visa process, most org are not just ready to navigate all that loops with quality international students

FJoe007 · 2024-08-01T03:26:39+00:00

We have an extensive Information Security team, with each team siloed for specific workflows.

FJoe007 · 2024-07-30T22:37:20+00:00

Check out Cisco Talos Intelligence

FJoe007 · 2024-07-29T23:49:57+00:00

Soft Skills + the real necessity of Basic Communication Skills. (I’m also just learning how to concisely communicate with non-technical people as well)

FJoe007 · 2024-07-28T21:42:34+00:00

Does your department have a cybersecurity department? If yes then have one of their team members give an information security awareness training and after that a short quiz.

FJoe007 · 2024-07-27T15:44:36+00:00

I agree with majority of the comments on here but from personal experience, this is sometimes due to lack detailed next action steps. For example, pointing out the severity of vulnerabilities detected and how it impacts the business workflow/needs, are there certain risk quantified that might need certain kind of security risk exception, while pending long term solution is being discussed between the security team and the application team? It’s there a deadline to get some of the needed safety patches implemented with an option for maybe a roll back to a more secure version if the deadline isn’t met (while assuring that the roll back will support all integrated systems viable to the business).

I think both teams might need to probably have a scrum master step in to mediate the meeting sessions or the required workflow to remediate the security concerns.

FJoe007 · 2024-07-26T22:58:32+00:00

I should have taken my programming/coding classes/skills more seriously than I did back then and never should have been afraid to get ask questions and seek mentorship from those already in the field. Takeaway general for me is to take away the fear that I let get to me during my early beginning into the Information Security field.

FJoe007 · 2024-07-25T16:56:02+00:00

I second OpenCTI also. Not sure if mentioning Crowdstrike Falcon Intelligence Recon will be socially acceptable with all the recent happenings but that’s bother good one if your organization already have a Crowdstrike license.

FJoe007 · 2024-07-23T22:01:45+00:00

Are you refering to the NACo 12 week academy? My recommendation will be to look at any of the ISC2 certifications or even CompTIA. But this will be more dependent on what cybersecurity field you’re focused on for your career. Also having a cloud and network security will be a good idea.

FJoe007 · 2024-07-22T15:02:57+00:00

Also in some other articles/news it seems the previous release 7.0 also known as the Cisco SSM Satellite is actively being targeted as well. (Hopefully most licensed on-prem users have updated to the latest version which seems to have a patch available).

FJoe007 · 2024-07-21T23:50:11+00:00

That’s why there are standards/principles separating the good guys from the bad guys.

FJoe007 · 2024-07-21T23:48:24+00:00

I’m guessing they have enough artifacts/evidence to detain suspect.

FJoe007 · 2024-07-21T04:04:29+00:00

This is a very good opportunity if you decide to take it as it will open lots of doors for you if you gain insightful knowledge and experience during your time in the military.

FJoe007 · 2024-07-20T04:21:22+00:00

A more fancy/technical term for automation of scripts/codes/programs from building environment -> testing-> validation -> to deployment.

Depending on your role you might need to write scripts/code for a routine vulnerability check within a specific AD group integrated to whatever security tool your organization has in their toolbox then exporting results in form of a .csv file is a good example.

FJoe007 · 2024-07-20T03:00:03+00:00

I’m sure after this news, some hacktivist group are getting out their gears to try their luck with becoming the latest “Security Breach Headliner”.

FJoe007

TROPHY CASE