Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
career:start [2021/06/03 04:02] – seb | career:start [2021/11/19 06:14] (current) – seb | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | ~~Title: Cybersecurity Career ~~ | ||
====== Career Corner ====== | ====== Career Corner ====== | ||
There are thousands of different career paths in Cybersecurity but there are a finite number of roles in the cybersecurity industry. | There are thousands of different career paths in Cybersecurity but there are a finite number of roles in the cybersecurity industry. | ||
- | ===== Cybersecurity Roles ===== | + | -> [[career/ |
- | Roles can be categorized by disciplines and can vary in the degree of specialization. Depending on the size of a Cybersecurity Program and the maturity of its operation there are more a less of the teams below. In some cases there might even be wildly specialized teams that we don't even have on the below list yet. | + | |
- | ==== Cybersecurity Operations ==== | ||
- | === Digital Forensics & Incident Response (DFIR) === | ||
- | This team is also known as **Computer Systems Incident Response Team (CSIRT)**. This team strives to fully contain any size of cybersecurity incident and eradicate any threat from your systems and networks. It also provides forensics for any kind of cybersecurity incident, which includes incidents with external and internal threats. Here are some roles that you would find in such a team: | ||
- | * Forensics Analyst/ | ||
- | * Incident Responder | ||
- | * Incident Commander/ | ||
- | === Security Operations Center (SOC) === | + | And while all the various roles will require different skills, there are some skills |
- | The SOC is the team that watches alerts, investigates them, and responds to them by either escalating to DFIR/CSIRT or by issuing pre-defined/ | + | |
- | * SOC Analyst (L1/ | + | |
- | * SOC Lead | + | |
- | * SOC Manager/ | + | |
- | * SOAR Engineer/ | + | |
- | * Threat Intelligence Analyst (Threat Intelligence often ends up being its own team) | + | |
- | === Security Engineering === | + | -> [[career/ |
- | The Security Engineering Team is usually closest to the IT Infrastructure team. Often the team members have worked in IT Infrastructure at some point during their career. This team usually maintains the security tool set. This team also performs security architecture reviews (aka Threat Modelling) for other IT teams. Here are some roles within this team: | + | |
- | * Security Engineer | + | |
- | * Security Architect | + | |
- | * Security Manager | + | |
- | * Security Director | + | |
- | ==== Governance, Risk, Compliance ==== | ||
- | In this space you find the paper generating strategists of the cybersecurity profession. Here are some roles you typically find in GRC type teams: | ||
- | * Auditor | ||
- | * Audit/ | ||
- | * (Enterprise) Risk Manager | ||
- | * (Compliance/ | ||
- | * Privacy Manager/ | ||
- | * Chief Privacy Officer (CPO) - This person does not always report to the CISO (It might belong to the Legal team instead.) | ||
- | ==== Chief Information Security Officer (CISO) ==== | ||
- | The BOSS of it all. This person gets to translate the complicated matters of cybersecurity to the C-Level and the Board of Directors. This person also acquires and manages budget and headcount. Defines overall Cybersecurity Program and comes up with Vision, Roadmaps and other strategic things. | ||
- | ===== Online Resources ===== | + | Now, let’s talk about how you get your first cybersecurity job. |
- | * [[https:// | + | |
- | | + | -> [[career/firstjob|Getting your first Cybersecurity |
- | * [[https:// | + |