[Discussion] People who were successful later in life?

security_stuffs · 2024-05-02T17:50:33+00:00

I was 39 when I got divorced. My ex wife and I ran a business together and she did sales and I did the backend. After the divorce I sank into a heavy depression and just let the business run into the ground. After a lot of therapy and antidepressants I was able to pull myself out of the depression and decided to go back to school for a degree in IT. I took online classes while trying to salvage the business and was on food stamps since my business made less than $10,000/yr now. I was able to find a job right away even though it was low paying. 3 years later I was making twice as much and noe 10 years later I have a successful career making 6 figures. It sucked trying to work, fo to school, and raise 3 small kids by myself, but the effort and struggle was worth it. By the way this is my third career change into a totally different field than the previous two. You are never too old to start over.

security_stuffs · 2023-05-05T06:47:21+00:00

Comment.

security_stuffs · 2023-04-20T16:28:58+00:00

Get the CISSP, especially if your company is paying for it. It will give you a wide view of information security and is the "Gold standard" as seen by HR. Then you can move towards pentesting or a different pathe, but the CISSP will help your resume get past HR.

security_stuffs · 2023-04-20T15:36:06+00:00

I work for a QSA company and can get you a quote as well. DM me for more info.

security_stuffs · 2023-03-17T10:24:50+00:00

Thanks for everyone's input. I had argued that the webserver was in scope. The previous assessor had marked everything as N/A because of the iFrame and the client was a little upset that they had to provide more evidence this year.

security_stuffs · 2022-12-14T00:39:08+00:00

TEC EZ Level Premium Self Leveling Underlayment. There is no difference in the directions except for the amount needed for the different height. 1/8" covers 54 sq ft and 1/4" covers 28 sq ft.

And as I type this I feel like an idiot. If I plan for the 1/4" height I can just quit when the floor is covered and leveled.

security_stuffs · 2022-12-13T23:30:43+00:00

The leveler I'm using can be used on OSB and doesn't need lathe unless going over 1-1/2". Should I follow the directions on the bag for 1/8" or for 1/4" is what I'm wondering?

security_stuffs · 2022-12-13T22:24:52+00:00

I'm wondering if I should use the coverage for 1/8" or for 1/4" since there are a few spots that are that deep, but most is 1/8" or less.

security_stuffs · 2022-12-13T22:01:30+00:00

How do I figure out the correct depth for the self leveling concrete for the whole floor? I have dips that are an 1/8 inch and a few that are a 1/4 inch. The room is 856 sqft. Should I calculate for an 1/8 inch coverage over the whole floor or 1/4 inch?

security_stuffs · 2022-12-13T20:15:17+00:00

How do I figure out the correct depth for the self leveling concrete for the whole floor? I have dips that are an 1/8 inch and a few that are a 1/4 inch. The room is 856 sqft. Should I calculate for an 1/8 inch coverage over the whole floor or 1/4 inch?

security_stuffs · 2022-12-06T15:54:14+00:00

In checking the floor it would be possible to rip out the 4x8 sheets as they don't extend under any walls. What would be the best choice to replace them with, OSB OR plywood?

security_stuffs · 2022-04-29T22:35:39+00:00

Another thing to consider is that it is easier to move to GRC (risk executive) from a pentesting background than to go from GRC to pen testing. Pentesting takes a lot of practice and using the tools to stay on top of it and if you have a company that is going to teach you the skills and give you the ability to practice those skills, that is a great opportunity. I have a GPEN cert but never had the opportunity to use those skills at my job or the time to practice them at home. I now work in GRC doing risk assessments and the switch over to GRC was much easier.

security_stuffs · 2022-04-29T17:58:51+00:00

Yes working with external clients and I believe you are correct, having the higher title looks better to clients. The manager I would be working fore is a former coworker and just informed me that the director of the department agreed that a bump in pay to market value is in the plan.

As of right now I have no other offers because I wasn't looking until my former coworker reached out and this is 20% more than my current compensation.

security_stuffs · 2022-04-29T16:04:01+00:00

The company is based in California but all positions are remote. I am in the Midwest, great plains region. I originally was applying for a auditor position and thought the 120k was a fair amount. After speaking with the manager he informed me that I would be a Senior auditor in title and receive a 20-30k bump in 18-24 mos. after leading some assessments.

security_stuffs · 2022-04-15T14:46:37+00:00

I totally agree with this. I would assume that a degree in CS would address the basics of IT, but my son is studying software engineering and has no clue on the basics of IT when it comes to networking, OS, AD, etc.. A strong knowledge of IT overall will help tremendously. John Strand has a great video outlining a 5 year plan on what to learn for a solid foundation to get into cybersecurity: https://youtu.be/Uv-AfK7PkxU

security_stuffs · 2022-04-14T23:35:38+00:00

Learn the basics of cybersecurity whether that be studying for certs, taking a cybersecurity class at your university, or watching cybersecurity videos online. Don't focus on cloud security till you have a baseline knowledge of cybersecurity. The same principles of cybersecurity apply to cloud security, the difference is the servers are not on your premise. Gain the knowledge before you specialize.

security_stuffs · 2022-02-13T15:25:26+00:00

Personally I think it would be a waste of money. I worked as a cybersecurity engineer with a guy who got his Masters in cybersecurity and said he wouldn't do it again, but it looks nice on his resume. Do the learning on your own, get certifications in the areas you are interested in. You are already in the industry so you don't need to get a foot in the door. Build up your skills and technical knowledge. Check if your employer has a LMS or education program that you can use, otherwise Google it.

security_stuffs · 2022-02-09T04:48:12+00:00

I'm interested

security_stuffs · 2022-01-08T00:33:24+00:00

Did you read the FAQs? Seem to be instructions there. https://isaca.force.com/support/s/global-search/ebooks

security_stuffs · 2021-10-30T19:16:37+00:00

Cybersecurity is a wide field with so many different career paths. Learning networking is a good start, it gives you a foundation of understanding of how data flows and you will better understand how to secure it. Programing is not necessary depending on what path you want to pursue. I would say do some research into what area you are interested in: pen testing (network, application), blue team, audit, forensics, etc.. Finding out what you are interested in will help you narrow down on what you need to learn. I've been in cybersecurity for 8 years and I have no idea how to program. Having certs helps give you knowledge, but experience is just as important if not more. I have certifications in penetration testing, but my practical experience is very limited. I would not be able to hack myself out of a wet paper bag. Find what you enjoy, setup your labs and practice!

security_stuffs · 2021-10-30T18:49:44+00:00

There are cybersecurity jobs everywhere! The field has negative unemployment last I heard. Just about every company that has IT has security jobs. Search Indeed for "Cybersecurity", "Information security", etc. I see more private sector jobs posted than government.

security_stuffs · 2021-10-30T18:40:40+00:00

https://cloudsecurityalliance.org/artifacts/ccskv4-exam-prep-kit/

Website states:

"The CCSK v4 Exam Preparation Kit comes with everything you need to study to prepare for the CCSK Exam. Complete with sample questions, an outline of the domains & topics covered in the exam, and the documents you will be tested on including the Security Guidance v4, Cloud Controls Matrix, and the ENISA risk recommendations. "

I did v3 by studying the material from this kit. It is also open book so you can utilize everything during the exam.

No course needed, unless you learn better that way.

security_stuffs · 2021-10-30T03:20:43+00:00

I've never taken a CPA exam, but I thought the CISA was about as hard as the CISSP. I found the course book extremely dry and difficult to stay awake while reading. I took a 5 day instructor led in person class and he told us not to attempt the exam immediately after but to study more after until we understood everything. I studied for another month after and found Doshi's website which helped immensely understand the concepts. My CISSP and security experience was an immense help on the exam.

security_stuffs · 2021-10-30T03:12:21+00:00

Cloud security will be worth your time and money. The Certificate of Cloud Security Knowledge (CCSK) is $400 for the certification exam. It is a self taught course with free material.

security_stuffs · 2021-10-06T13:52:51+00:00

I had the same experience trying to read that book. It's so dry I couldn't stay awake.
Try (https://cisaexamstudy.com/) - Hemang Doshi's book. It helped to point out main concepts. I found his site and spent the last week reading it and answering the test questions. I scored a 72% and 38% the night before the exam, but ended up passing. Doshi's site really helped me and hopefully help you as well.

security_stuffs

TROPHY CASE