Question

Selecting an area within security to start

Career development, Certifications, Networking, Security, Application security, Exchange, Encryption, Database, secure coding, Current threats, Viruses, worms, Hacking, Spyware, Trojans, Identity & Access Management, Digital certificates, Biometrics, Network security, Firewalls, VPN, Intrusion management, Incident response, Forensics, Wireless, Platform Security, vulnerability management, patching, configuration, PEN testing, Security Program Management, Compliance, Risk management, CRM, Policies, Disaster Recovery, Web security, access control, Browsers, SSL/TLS, CISSP, MCSE, CCSA, CCNA

Hi,
I'm studying for an MSc in Information Security from Royal Holloway University of London, I have a B.Engg. degree in computers and a PG Diploma in Networking and Communication as well as the CCSA and CCNA. I'm also studying for the CISSP.

Now, with all these qualifications, could you please tell me which would be the best position for me to apply for in order to get a start, and if I try that position what would my options be when I gain some experience.


Thank you!!

In a very real sense, it doesn't matter as much what position or area you start with as what you do with it.

Unless you have the misfortune to get employed by an egotistic micromanager, you'll always have some latitude in how you perform your duties. Here are some suggestions:

- Learn what security-related tasks, functions, areas exist within any organization. If your school has an "intern" or employer program, then ask to speak with representatives of those organizations. Interview THEM to learn how different organizations approach things.

- When you do get a first position, learn how your responsibilities relate to others. If appropriate, meet those people.

- As you learn the job, start looking for inconsistencies. Ask questions of "clarification". Do it that way so as not to step on sensitive toes. For example: "I don't understand why our user's passwords are kept on the bathroom tissue in the loo." I've used a ridiculous example, but the key is to to be seen as learning, not challenging. This is important when you are first starting out - because some people feel threatened by newcomers, because you will learn some things you would never have guessed at, and because (most importantly in my book) once you set yourself to the habit of ALWAYS learning about things in your environment, you will be better prepared to deal with new things.

I'm short on time now, but I hop this points you in the right direction.

Bob