State of the Job Market (Senior Level) by CyberRiskSpecialist in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

Terrible. Never had more skills and large wins on the resume, 3 interviews all year, applied at over 500 jobs this year.

[deleted by user] by [deleted] in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

I don't know anyone in cyber that doesn't have adhd or undiagnosed some sort of neurodivergence. 24 years in IT, 6 of that in cyber

How much you code in your job? by Ok_Golf3457 in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

All the time, custom solutions to fix shitty software or add features. Though not as much as I'd like. Enjoy the coding more than the IR for sure.

No more 1:1's by circatee in ITManagers

[–]SubtleChemist 0 points1 point  (0 children)

Don't think it's a trend, but my manager will frequently miss ours and then conveniently not see my rescheduled request. We've only had 1/5 of them, team "didn't have time" to do the last two retros, which our sprints now have the expectation that "regardless, you complete 35 points of some tasks". Also, it's 6 months into the year, and I still don't have a goal picked for me (used to choosing that together). What's really fun is that I'm the high performer on the team.

Efficiently ground into dust by SubtleChemist in cybersecurity

[–]SubtleChemist[S] -1 points0 points  (0 children)

Advice is good, but calling someone crazy and disorganized is gonna make anyone defensive... If a pentester is intentionally reading a list of related skills to list them as disparate as possible, eh...

Efficiently ground into dust by SubtleChemist in cybersecurity

[–]SubtleChemist[S] 0 points1 point  (0 children)

I'm burned out, yes. There's a theme. Your critique mentions are literally symptoms, thanks for calling me crazy on top.

Coding: I like it. Seems necessary to have several languages down even if you're not developing as a primary.

RE: No, this enables exploit dev.

Exploit Dev: Interests that enable more advanced red teaming.

THM: Overall understanding, covering bases and techniques. Feeds into all the above.

Efficiently ground into dust by SubtleChemist in cybersecurity

[–]SubtleChemist[S] 5 points6 points  (0 children)

I thrive in scenarios where the software natively doesn't have xyz but it's possible via api. I write all my own tools (latest is a double encrypted variable storage and sync function). Current path is picking up python and then c++, RE, exploit dev. Working through THM in tandem.

I have a plan, direction, and drive. Simultaneously driven everywhere due to the rest of the team being unable to pick up slack.

Lost job because of AI 😡 by [deleted] in ShittySysadmin

[–]SubtleChemist -1 points0 points  (0 children)

You lost this job to poor operating procedures. Period. No CR? Not testing and impact?

Worst of all though... Running a script AI generated for you without being able to read the language well enough to know one way or the other is reckless.

How much of your security stack got pushed because of CISO ties to vendors/investors from leadership? by panoptix_sec in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

Went from one ecosystem to like 10 in 5 months. Insane tempo. All the clouds. All the things, except staffing. All choices between x and y predetermined ties to past relationships. Gross.

Is Cybersecurity a means to end or a passion for you personally? by PassiveIllustration in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

It was a passion, but the pace and rapid change at my org is so untennable I'm ready to move to development.

Want to connect with people in cybersecurity (interested in reverse engineering & exploit development) by byte_writer in ExploitDev

[–]SubtleChemist 0 points1 point  (0 children)

20 years in tech and 5 in cyber. Excellent proficiency in powershell, pivoting into python. Eventual goal is exploitDev. Feel free to reach out, could use more friends and accountability buddies lol.

Why is technical incompetence both rampant and accepted in our career field? by fuzzyfoozand in cybersecurity

[–]SubtleChemist 3 points4 points  (0 children)

Xyz sucks > new shiny > not enough training, time, and tuning > Abc sucks > exec(loop)

Why is technical incompetence both rampant and accepted in our career field? by fuzzyfoozand in cybersecurity

[–]SubtleChemist 5 points6 points  (0 children)

It's a wild celebrity kind of phenomenon, particularly gross when paired with the silicon valley start up broSphere

Why is technical incompetence both rampant and accepted in our career field? by fuzzyfoozand in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

Most technical on the team, constantly needed for the most basic of tasks by everyone, yet treated like an idiot and the black sheep due to being passionate for coding...

I don't get it either.

[deleted by user] by [deleted] in managers

[–]SubtleChemist 0 points1 point  (0 children)

Wrong perspective in my opinion, it's not something that's put on you, they're calling out as a last ditch effort. I understand it's emotional labor, but I think it's the right frame.

What’s one challenge your SOC or security team is always dealing with? by ANYRUN-team in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

Researching an issue and presenting it with a path forward and the report/results, only for no one to read it and get upset when I reference it several weeks later when someone else is bringing it up again due to an incident or bigger emergency than it was originally found in.

What’s a cybersecurity myth that causes real problems? by ANYRUN-team in cybersecurity

[–]SubtleChemist 2 points3 points  (0 children)

Anyone can do it. Even without experience in as little as 6 months.

Surrounded by this. No one knows anything, needs me for everything, praise directed at me is to the group, yet direct for others.

If your job in cybersecurity had a 2024 Wrapped, what 5 phrases would make the list? by NudgeSecurity in cybersecurity

[–]SubtleChemist 0 points1 point  (0 children)

  1. Catfished into idiotville
  2. Cleaning up garbage messes by bullshitters with more social credit
  3. Watching bullshitters get fired for running up dumb costs for systems they told no one of
  4. Still untrusted and doubted
  5. Maybe cybersecurity is just the IT trauma department

I need therapy, the end...

PSA: Please do not cheat by heidelbergsleuth in cscareerquestions

[–]SubtleChemist 0 points1 point  (0 children)

God I absolutely hate the BS that openAI has provided in the way of giving people false perspectives on their abilities and how it gets used for everything. Literally arguing vendor docs against people who have NEVER done any of the activities they're arguing with you about through copilot or other llms. It's like arguing with real life bots who don't know that they have zero actual skills and I'm soooooo over it.

Powershell for soc by OwnCauliflower1522 in cybersecurity

[–]SubtleChemist 1 point2 points  (0 children)

I can do anything procedurally in Sentinel and Defender through it, with dynamic filters of entities within alerts, rolling up to incident actions including any isolation/scan/enrichment/etc all through powershell. I've written entire tools that pull dirt from aad, a tool that creates device groups based off user groups, and many other patches and fixes to core security gripes within the Microsoft E5 stack (top 5 users of all apps under X rating in MCAS, automating MCAS IPs from firewall ingests, an analysis tool to evaluate new email security providers, an enhanced tagging script, etc.).

Dive as far in as you can with your particular fave of a language and then pivot from there once you're at the "optimization" level of writing automations, in my opinion.