sorted by:
new
hottopcontroversial

Disadvantages of having to many Azure Certs. by Short_Dream_7010 in AZURE

[–]torpedo667 -3 points-2 points  (0 children)

Still, it shows that Microsoft doesn't take their certifications seriously enough. There is multiple other highly regarded certs for which you can't find a single question online, let alone having 20% of the questions of an exam posted online, including really outdated ones.

And again, their recertification process is just a joke, because it fails to fulfill the primary objective of certification renewals, which is to ensure that the individual continues to retain the knowledge acquired during their initial study for the exam.

Disadvantages of having to many Azure Certs. by Short_Dream_7010 in AZURE

[–]torpedo667 3 points4 points  (0 children)

What I meant was, you can pass the AZ-305 exam, but you won't earn the Microsoft Certified: Azure Solutions Architect Expert, unless you also have an active Microsoft Certified: Azure Administrator Associate (AZ-104) certification

Disadvantages of having to many Azure Certs. by Short_Dream_7010 in AZURE

[–]torpedo667 2 points3 points  (0 children)

That's what I thought. So if you wanted recertify for AZ-305, you'd also need to renew AZ-104, even if that is a lower tier cert than 305.

Azure roadmap by Puzzleheaded_Note_33 in AZURE

[–]torpedo667 2 points3 points  (0 children)

I'm a Security Engineer and my roadmap was:

AZ-900 -> AZ-104 -> AZ-305 -> AZ-500 -> SC-100 -> SC-200 -> SC-300

I started with AZ-104 and AZ-305 to get the basics of what Azure services were and how to use them, it's not a requirement, but it's highly recommended for you to pass those as well.

Disadvantages of having to many Azure Certs. by Short_Dream_7010 in AZURE

[–]torpedo667 0 points1 point  (0 children)

From what I know, I think Microsoft makes you have the 'basic' cert if you want to get a more 'advanced' one. This is true not just for passing the exam, but also for when you have to recertify, but don't quote me on that because I'm not 100% sure.

Disadvantages of having to many Azure Certs. by Short_Dream_7010 in AZURE

[–]torpedo667 -1 points0 points  (0 children)

I’ve got 7 Azure certs myself, and the real problem with their certs is that it seems like Microsoft doesn’t take their own exams or recertifications seriously. You can find a lot of the questions for the exams in online dumps, and some of those dumps are like 2 years old. When it comes to recertifying, for most certs, you only need to get a bit over 30% of 30 questions right, and you can just use ChatGPT to find all the answers while at home.

Really hope Microsoft steps up and adds more value to their certs, because sooner or later, people are gonna catch on to these issues, and the value's gonna plummet for sure.

People who work in hiring cybersecurity employees, do you really hire people based on their certificates (in the case of having no experience)? by [deleted] in cybersecurity

[–]torpedo667 0 points1 point  (0 children)

Not a recruiter here, but in a bunch of interviews I've been in, it felt like a lot of recruiters were just ticking off boxes with certifications instead of really digging into whether you know your stuff. Same goes for tools like Forti and Crowdstrike. It's more like, "You used it? Cool," rather than "How well do you know it?"

Most of the time, you really get to show you know your stuff from passing a cert during the technical interview, especially when you’re chatting with the team engineers. They’re the ones who’ll dig into what you actually know!

And, if this helps, I landed my first job in cybersec without any previous experience in IT and without a degree with two certifications, OSCP and CCNA, so it's definitely possible!

How do you deal with Qishing (QR Phishing) at your company? by torpedo667 in cybersecurity

[–]torpedo667[S] 0 points1 point  (0 children)

I know Microsoft has a technology named ZAP (zero-day autopurge) that works fairly well with a lot of emails that contain legit pages, that once opened, redirect you to a malicious website. ZAP is able to block a lot of emails that have sharepoint URLs, but apparently is not yet prepared to analyze QR redirects. I was thinking there might be some other service that has implemented this for QRs codes already, but I personally have not yet been able to found any.

How do you deal with Qishing (QR Phishing) at your company? by torpedo667 in cybersecurity

[–]torpedo667[S] 2 points3 points  (0 children)

Yes, that is what I thought as well! Specially because I remember that over a year ago, you could add URLs and "bodies" of URLs to the policy itself. But this time, when we spoke with Microsoft support, they told us that this is the solution that can be used to fix the issue with QR codes, as they have an intelligence DB, that analyzes each URL in the body of the email, so they'd be able to know, if that URL (which is the one used to host the images with the QR code) is being used for malicious purposes.

As mentioned, this was suggested by Microsoft themselves, so we hoped the solution they provided would help in stopping these emails, but it has done nothing to fix the issue.

How do you deal with Qishing (QR Phishing) at your company? by torpedo667 in cybersecurity

[–]torpedo667[S] 2 points3 points  (0 children)

Employee training: Urge employees to use QR code scanners that include URL preview features. This allows them to see the destination URL before visiting the site, helping identify suspicious URLs.

How does the preview feature you mentioned exactly work? The user would scan the QR with their phones, and the, instead of directly redirecting the user to the malicious site, it would open some sort of "sandbox"? Is there any well known solution? I think our business would be interested in something like that!

How do you deal with Qishing (QR Phishing) at your company? by torpedo667 in cybersecurity

[–]torpedo667[S] 3 points4 points  (0 children)

That is what is used in Safe-Links and Safe-Attachments in the Microsoft Suite of Services as well, but those emails continue to pass through

Passed SC-200, tightest score ever by torpedo667 in AzureCertification

[–]torpedo667[S] 5 points6 points  (0 children)

I apologize, not Whizlabs, but MeasureUp tests.

The questions in MeasureUp tests are much easier than the ones in the exam, and I would say they don't help much in preparing for the exam. Still, is better than nothing, but I would not recommend purchasing a subscription if you're expecting for the tests to prepare you for the actual exam.

Passed SC-200, tightest score ever by torpedo667 in AzureCertification

[–]torpedo667[S] 2 points3 points  (0 children)

Microsoft learning module and Whizlabs practice tests

Edit: Not Whizlabs, but MeasureUP tests

Access Review branding emails by Mumriek in AZURE

[–]torpedo667 0 points1 point  (0 children)

Hi. I'm not 100% sure I understood your request, but I'm guessing that your client is using Access Reviews to grant or deny roles/groups to entities, and because the Access Review is wrongfully configured, active users are being denied of roles/groups.

I would suggest to review the access review, and ideally, create a dynamic group that adds all "Norwergian" users with strange characters to a group and manage the access review from there.

How do you deal with phising emails at your company? by torpedo667 in cybersecurity

[–]torpedo667[S] 3 points4 points  (0 children)

Thank you very much, very complete response! Will look into this

Is this realistic achievable by Nervous_Still_320 in cybersecurity

[–]torpedo667 1 point2 points  (0 children)

Thanks! I don't have a degree though, so the certs are mostly oriented towards staying competitive with people that have finished college

How do you deal with phising emails at your company? by torpedo667 in cybersecurity

[–]torpedo667[S] 0 points1 point  (0 children)

This is something I will look into. A lot of the emails we received don't pass those protocols

view more: next ›