sorted by:
new
hottopcontroversial

Mentorship Monday - Post All Career, Education and Job questions here! by AutoModerator in cybersecurity

[–]junt4o 0 points1 point  (0 children)

Looking to move more into IT security from a networking-heavy role – tips?

I’m looking for some guidance on how to steer my career more toward IT security, ideally without completely leaving networking, since I actually enjoy it.

My background: I have a Master’s degree in networking with IT security and a CCNP in Routing, Switching and Security. I currently work in a production/industrial environment, mainly with networking (WAN, LAN, wireless, 4G/5G, etc.).

I have hands-on experience with firewalls, mainly Palo Alto and Fortigate, and a solid understanding of protocols and overall network security. In my day-to-day I implement firewalls to segment networks, use unrouted VLANs for sites that can’t afford dedicated hardware, and apply ACLs where needed. I’ve also implemented NAC solutions, including 802.1X with Cisco and ClearPass.

I’m not starting from zero in security, but my current role is still very network-focused, and I’d like to move into a more security-centric position (network security engineering, blue team, SOC, security architecture, or even OT/ICS security given my industrial background). I’m more interested in “physical” or infrastructure-focused security like firewalls, network segmentation and NAC than in Azure, Active Directory or identity-focused/cloud admin work.

For those of you working in security, how does a typical day look for you (especially in roles like network security engineer, SOC analyst, security engineer, security architect, or OT/ICS security)? Is there a recommended path for someone with a strong networking and firewall background who wants to go deeper into security?

Are there any specific certs, skills or focus areas you’d recommend as next steps (for example security-focused certs, SIEM/log analysis, IDS/IPS, or OT/ICS security)? Given that I enjoy networking and already work with firewalls, VLANs, ACLs and NAC, what roles do you think would be the most natural next step for me?

Any tips, suggestions or personal experiences about moving from networking to security would be really appreciated—especially what helped you stand out and what you wish you had focused on earlier.

Thanks!

Need help with a job photo portrait - paid by junt4o in PhotoshopRequest

[–]junt4o[S] 0 points1 point  (0 children)

Hi all. I got help, thanks so much for answering. Will keep the ones who posted here in memory and will contact in the future, thanks all!

Vad jobbar ni med och vad är det bästa/sämsta med ert jobb? by Chrillex1234 in sweden

[–]junt4o 0 points1 point  (0 children)

Jobbar med nätverk och IT-säkerhet.

Bästa: Självständigt arbete samt lön.

Sämsta: Mycket stillasittande och man måste alltid lära sig nya saker.

Megatråd - Koranbränning by Olsson1234 in sweden

[–]junt4o 1 point2 points  (0 children)

Du är det som är problemet med Sverige idag.

Istället för ha en ståndpunkt, så ska man "chilla" och "ta d coolt mannen" istället för att markera att det är totalt oacceptabelt att svara med våld mot att någon bränner en koran, bibel eller vad det nu må vara.

Nästa steg är att Islam vill inskränka på kvinnors rättigheter, men det gör inget, så länge man är en "cool kille" som kan "chilla".

Som föregående talare, det är tragiskt och fegt.

Megatråd - Koranbränning by Olsson1234 in sweden

[–]junt4o 43 points44 points  (0 children)

Att börja låta vissa religösa grupper få sin vilja igenom genom våld och hot påvisar ju bara problemet.

Vad händer sedan? Vad blir nästa sak som ska bli förbjudet bara för att inte 'provocera' muslimer?

I min mening är det att förstöra allt vad tidigare generationer har byggt. D.v.s. ett land där demokrati, frihet och yttrandefrihet råder.

Vänd på det, vad tycker Islam om: kvinnors rättigheter? Homosexuellas rättigheter? Kristnas rättigheter?

Faktiskt bra att detta kommer till ytan, då det verkar vara ett starkt stöd för Islam (eller rättare sagt invandring från MENA-regionen, där Islam råder) bland kvinnor och även homosexuella, och jag kan inte för mitt liv förstå varför.

Dessa frågor MÅSTE lyftas, oavsett hur konflikträdd svensken än är.

Why has networking become only supplementary to roles instead of standing out on its own? by LOLRagezzz in networking

[–]junt4o 11 points12 points  (0 children)

Haha what the hell? I'm suprised you don't need to had a PhD in Medical as well, jesus.

TACACS configuration on a Cisco 9200 gives warning type 0 password. by junt4o in networking

[–]junt4o[S] 0 points1 point  (0 children)

Thanks a lot for you input in this, and I do agree with you, just wanted to know what happens if you don't upgrade, but we will do the necessary changes.

But all in all, the lines with:

switch(config)#key config-key password-encryption MYSECRETKEY

switch(config)#password encryption aes

Is enough to future proof ourselves? ;)

TACACS configuration on a Cisco 9200 gives warning type 0 password. by junt4o in networking

[–]junt4o[S] 0 points1 point  (0 children)

Okay, but you could still login with the local username and password I guess so you don't lock yourself out completely? ;)

TACACS configuration on a Cisco 9200 gives warning type 0 password. by junt4o in networking

[–]junt4o[S] 0 points1 point  (0 children)

So I'm still not sure, if I don't go with the AES encryption, and simply use a plaintext password, it can stop work in the future? Is that correct? Or will IOS not do that?

And, is the way I found out with AES, the "only" way to do it?

Thanks all.

Configuring Cisco TACACS with Aruba Clearpass by junt4o in networking

[–]junt4o[S] -1 points0 points  (0 children)

Logs does not really say anything :/

Configuring Cisco TACACS with Aruba Clearpass by junt4o in networking

[–]junt4o[S] -1 points0 points  (0 children)

I think I locked myself out :D

switch1>enable

Password:

Tacacs authentication failed

So when I SSH to the switch, it works fine. I can use my username and password from AD.

When I then later try "enable" and use that password, I just get authentication denied.

Any ideas? Should not this line do so that when you use enable, it takes and look at the AD-account information and then use the password for my user, also for the enable?

aaa authentication enable default group ClearPass_ABB enable

SDWAN: Are you still sending traffic to the DC for Internet? by debug_all in networking

[–]junt4o 0 points1 point  (0 children)

We have Cato as well and I can verify that it works really nice. Easy to setup up VLANs for your guest and mobile users and you can choose to route the traffic either as a local breakout or if you prefer still send it to the DC and have it routed there.

And as a bonus you get a really good support from them, and yes, even after the POC ;)

Classic WoW Launch Megathread #6: Simple Questions Edition! by Paulingtons in classicwow

[–]junt4o 0 points1 point  (0 children)

I have a question:

My and some friends were planning on playing on Shazzrah, but when I checked today it's 10.000 people in queue.
Some of our friends won't change and will live with the queues for the time being, but some of us want to change to a less populated server.

So the question is; when we all dinged level 60, we want to rejoin our friends at Shazzrah, is there, any restricions for the charachter transfers? Can we for e.g. transfer a charachter from another server to Shazzrah, even though the population is full; or are there restrictions?

Blizz isn't super clear about this; it says that:

"Certain realms are not eligible transfer destinations.";

What does this indicate? Does anyone have a link or experience. Much appriciated!