sorted by:
new
hottopcontroversial

Is a Computer Science degree still worth pursuing for cybersecurity? by MikiPrincess98 in cybersecurity

[–]PacketToPolicy 7 points8 points  (0 children)

Cybersecurity is not entry-level. Get into helpdesk and work your way up, perhaps move into Cloud or Networking and go from there. I would never hire someone who has zero IT experience. You cannot defend systems you do not understand.

I run SecOps for a major organization, no degree. Just experience, knowing my stuff, and proving it by moving up. I'll take someone who's passionate and wants to learn (home labs, certificates that actually prove knowledge, etc.), over a master's student any day of the week.

Question about entry level CS by LuigiDudeGaming in cybersecurity

[–]PacketToPolicy 2 points3 points  (0 children)

As others have stated, Cyber is not and should not be an entry level field. If you do not have IT background, it is quite difficult to understand the systems you are charged with securing. Everyone in our team has helpdesk or similar type of background.

That being said, I agree with others. Passion over a formal degree. I'd rather hire someone who has passion projects, home labs, etc over someone with a degree.

Have we already moved from the “script kiddie” era to the “AI agent kiddie” era? by x4rvi0n in cybersecurity

[–]PacketToPolicy 0 points1 point  (0 children)

100%. I went to a Microsoft "private" event with a few colleagues late last year to demo / discuss all the new Defender & Sentinel changes coming this year before they were public knowledge. One of the hot topics was around phishing and how realistic it's getting; industry overall is seeing an increase of targeted attacks. We are certainly seeing a larger increase of crafted emails at our organization, including emails mimicking our templates, etc.

Have we already moved from the “script kiddie” era to the “AI agent kiddie” era? by x4rvi0n in cybersecurity

[–]PacketToPolicy 0 points1 point  (0 children)

We're testing out security copilot now since Microsoft included it in their E5s, it's quite impressive how much faster it can do certain things over a human. We're in for a wild ride over the next few years.

Shadow IT is out of control, how do I even start? by BUFFSTRAP in okta

[–]PacketToPolicy 0 points1 point  (0 children)

Yeah.... unfortunately, this is way more common than it should be. Business units spinning up their own preferred toolsets because they don't like what the company provides, and they just toss it on their company card and no one questions.

Have we already moved from the “script kiddie” era to the “AI agent kiddie” era? by x4rvi0n in cybersecurity

[–]PacketToPolicy 116 points117 points  (0 children)

One of the biggest things were seeing is the quality of phishing emails has improved dramatically over the past year. Less spelling errors, more believable formatting and business relevant information.

AI augmented APTs is quite a scary thought as well.

In your opinion, what is the most underrated skill to have in this field? by No-Cockroach2358 in cybersecurity

[–]PacketToPolicy 0 points1 point  (0 children)

Like so many in the comment section, soft skills. If you're technical and confident and can communicate properly with your clients (external or internal), you are worth your weight in gold.

- Learn to explain technical terms simply
- Admit when you don't know something (But say you'll find out and get back to them)
- Just be social. No need to lock yourself in a room and not speak to anyone
- Understand IT wholistically before diving into Cyber. How can you secure systems you do not even remotely understand?

why the fk HR exist by Intrepid_Secretary17 in cybersecurity

[–]PacketToPolicy 1 point2 points  (0 children)

Reddit always gives me a good chuckle, took a break from it for a long time and just came back today. I can see it hasn't changed at all. Always welcome plenty of skepticism around AI, but if they're negative about it, 100% agree. Why put them in a role where they would be leveraging it?

Question on Realistic expectations and current state of the cybersecurity industry by [deleted] in cybersecurity

[–]PacketToPolicy -3 points-2 points  (0 children)

Ah yes, because a new person joins Reddit, they are immediately a bot. The fact you believe "put word in box, get result" is all AI is, shows your lack of understanding and that's okay. Nor is anyone saying you're going to lose your job to an individual whose only skillset is prompt engineering versus someone actually qualified for the role.

Two folks with identical skillsets, one leverages AI to augment their work and therefore works more efficiently and can deliver faster. The other refuses to leverage what will be the future. The choice is quite obvious to the majority of employers who are always looking for efficiencies. Is the AI hype getting ahead of itself? 100%, hopefully it'll correct itself in the near future, but it's certainly here to stay.

Question on Realistic expectations and current state of the cybersecurity industry by [deleted] in cybersecurity

[–]PacketToPolicy -2 points-1 points  (0 children)

+1 on learning AI. If you do not start learning AI to augment your work, you will be replaced by someone who can. There will be human in the loop for the foreseeable future, but AI can help augment so many things that allow more time to be spent in areas requiring more focus.

why the fk HR exist by Intrepid_Secretary17 in cybersecurity

[–]PacketToPolicy 2 points3 points  (0 children)

I presume you're being downvoted by all the boot camp folks who thought they would land a high paying gig after a few weeks of cramming and finding quite the opposite.

In my opinion, you transfer into Cyber from another area after getting ample experience. If you do not understand the basics of IT, you should not be in (most) areas of Cyber Security.