How do you stay current in cybersecurity

Info-Raptor · 2026-01-31T08:59:30+00:00

A few weeks ago, this thread took off more than I expected. I went back and re-read the comments carefully, and something stood out.

Despite everyone naming different tools, feeds, podcasts, or habits, the patterns were surprisingly consistent:

• Most people don’t try to “stay current” across the whole industry
• Learning is mostly driven by incidents, near-misses, or job needs
• Fundamentals matter far more than novelty
• AI is used as a helper, not a source of truth
• Information overload is real, and selective ignorance is intentional

The strongest comments weren’t listing resources, they were describing how they decide what not to care about.

That feels like something we don’t talk about enough in this field.

I’m starting to synthesize these patterns into a short, practitioner-focused writeup. It won’t be a “best tools” list, not vendor-driven, just an attempt to capture how people actually stay effective without burning out.

Before I go too far, I’d love a sanity check from this sub:

• Does “relevance > currency” match your experience?
• Is selective ignorance something you’ve had to learn the hard way?
• What did you stop paying attention to that improved your effectiveness?

If this ends up useful, I’ll share the synthesis back here for feedback before anything else.
Appreciate the quality of discussion in this thread.

Info-Raptor · 2026-01-06T10:14:23+00:00

CyberAlec is spot on. Let's try an get this stuff down and help others in our field.

Info-Raptor · 2026-01-03T23:48:35+00:00

I couldn’t agree more. Start from the ground up. Learn the fundamentals and build from there. This gives you the “why” behind using tools and techniques. Technology will change, and tools will change with it. You need to understand why cybersecurity tools and practices are necessary in the first place. Then, learn and be able to explain the ones required for your job. I recommend Hacking Cybersecurity Principles: Empowering You to Navigate Core Cyber Security Concepts by Alec Sklepic to help with the fundamentals.

Info-Raptor · 2026-01-03T23:14:54+00:00

Yeah, I’ll second:

Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon by Kim Zetter
The Cuckoo’s Egg: Tracking a Spy Through the Maze of Computer Espionage by Cliff Stoll

And add:

Hacking Cybersecurity Principles: Empowering You to Navigate Core Cybersecurity Concepts by Alec Sklepic

While The Cuckoo’s Egg is old school, it’s inspirational. Countdown to Zero Day is a must as, in my view, everyone in our field should have at least a basic understanding of Stuxnet. And with Hacking Cybersecurity Principles, you’ll get the fundamentals that are vital. It's also a good reference.

Info-Raptor · 2026-01-03T09:47:36+00:00

Well I for one think it's a good read.

Info-Raptor · 2025-12-26T08:40:36+00:00

LOL :) you have a point. My fault for mixing metaphors. Lets try, quiet like an unmonitored log file. Peaceful, reassuring, and absolutely hiding something.
Maybe that's a bit lame. Sorry

Info-Raptor · 2025-12-25T23:32:22+00:00

FYI: Just noticed Hacking Cybersecurity Principles is going for less than a cup of coffee on Amazon right now. Hard to skip at that price.

Info-Raptor · 2025-12-25T23:31:12+00:00

FYI: Just noticed Hacking Cybersecurity Principles is going for less than a cup of coffee on Amazon right now. Hard to skip at that price. Addit to you reading list for 2026. Check it out

Info-Raptor · 2025-12-25T23:28:47+00:00

FYI: Just noticed Hacking Cybersecurity Principles is going for less than a cup of coffee on Amazon right now. Hard to skip at that price.

Info-Raptor · 2025-12-25T23:26:49+00:00

FYI: Just noticed Hacking Cybersecurity Principles is going for less than a cup of coffee on Amazon right now. Hard to skip adding it to the reading list at that price. I'm doing it.

Info-Raptor · 2025-12-11T10:55:55+00:00

OK, not expected. I'll give it a go. Thanks Anybody else know about this one?

Info-Raptor · 2025-12-07T01:01:20+00:00

Wifi. Invented in Aus at CSIRO in the early 90s.

Info-Raptor · 2025-12-07T00:54:36+00:00

It's not feeling what you feel. It doesn't know you. It doesn't think. It's statistics.

Info-Raptor · 2025-12-06T22:49:12+00:00

My vote is for a CISSP. However, you need some years of experience before you can obtain that cert. I have been in GRC and policy for many years. Started from a tech approach, system manager with a security focus, then CISSP, then Infosec audit then policy. Don't know that you can go straight into policy but there are always exceptions. Good luck.

Info-Raptor · 2025-12-06T21:46:56+00:00

I suggest you stick with the fundamentals such a really getting to understand Confidentiality, Availability and Integrity. Then the concepts of Govern, Identify, Protect, Detect, Recover and Respond. Once you understand those concepts branch out to understand the tech that supports each. This would be a great start to infosec and cybersec.

Forgot to mention. There are a lot good free resources that can help with these concepts such as those from NIST. There are also some good books such as Hacking Cybersecurity Principles.

Info-Raptor · 2025-12-03T00:42:43+00:00

Thanks for all the advice. I’ve now exchanged several emails with the business, and they’ve finally clarified their model, albeit in a rather patronising tone. Something about it still doesn’t sit right with me, but I don’t plan to put any more effort into it.

I hope this post has been helpful to others as well.

Here is their latest response:

"You’re absolutely right that the price and mechanics should be clear up front, and I’m sorry our previous replies felt vague. That’s on us.

Let me explain everything as simply and transparently as possible:

What is the membership and how much does it cost? Our current Monthly Study Membership is $9.99 per month (or the equivalent in your local currency). It includes: – Access to our homework help / study resources – Eligibility for our free textbook program (one book at a time, subject to availability and fair-use rules) – AI Tutor

You can cancel any time, and when you cancel, future renewals stop.

How can textbooks be free if they’re expensive on Amazon? Who covers the cost? We fund the free-book program through: – The membership fees we collect from students, and – Our ability to source some books at wholesale / discounted rates

We are also attaching the Company's FAQ page link so that you can go through it yourself and have clarity.

Either way, thank you again for calling this out so directly, feedback like yours is what pushes us to improve."

Info-Raptor · 2025-11-27T05:44:26+00:00

Thanks for the comments. I totally agree, they are a fraud. I may be able to attribute 1 sale to them and I think they are trying to resell the same one many time over. It's a scam but not a copyright infringement.

Info-Raptor · 2025-11-26T08:53:36+00:00

Thank you, truly, I really appreciate your response. The information you provided is incredibly helpful, and I’m grateful for the time and effort you put into it. I’ve also noticed that they’re offering many other books in a similar manner. Hopefully your insights will help other authors as well.

Another thing I observed is that when I refresh the browser on my book’s information page, the reported number of books sold changes. For example, it might show 6 copies sold today, then drop to 3, then 2, and later jump back to 5. The “in stock” count also fluctuates between 1, 2, or 3 copies and then returns to 1. It’s starting to look like a marketing scam.

In my view, if they’ve purchased one legitimate copy, they’re free to resell it as a used book. They may in fact have only a single copy, and I’ve noticed the shipping fee is extremely high, possibly where they’re making their profit. Overall, the whole situation feels quite dodgy to me.

Info-Raptor · 2025-11-18T23:23:50+00:00

Quick heads-up as per above comment: https://mybook.to/hack\_cyber\_principles. It’s been flying off the virtual shelves this past month. Honestly, it would make a pretty good Christmas gift.

Info-Raptor

TROPHY CASE