the reality vs. expectation in cybersecurity.

Подписаться 204 тыс.

Просмотров 157 тыс.

50% 1

reality in cybersecurity careers is different. here's why.
⏰ Timestamps:
0:00 - Introduction
1:40 - 1) "The Skills Shortage Gap"
3:14 - 2) Adding Value Day One / Year One
6:51 - 3) Burnout & Information Overload
9:08 - Conclusion
🐕 Follow Me:
Twitter: / collinsinfosec
Instagram: / _collinsinfosec
Cybercademy Discord Server: / discord
🤔 Have questions, concerns, comments?:
Email me: grant@cybercademy.org
🎧 Gear:
Laptop (Lenovo X1 Carbon Ultrabook 6th Gen): amzn.to/2O0UfAM
Monitors (Dell D Series 31.5” D3218HN): amzn.to/2EXlgRF
Keyboard (Velocifire VM01): amzn.to/2TEswfd
Headphones (Audio Technica ATH-M40x): amzn.to/2F4Tvq6
Work Monitors (Dell U4919DW UltraSharp 49 Curved Monitor): amzn.to/3yQmDhM
Work Desk (FlexiSpot EW8 Comhar Electric Standing Desk): amzn.to/3S9OxvG
Personal Desk (FlexiSpot E7): www.flexispot.com/flexispot-b...
Desk Chair (FlexiSpot C7 Chair): www.flexispot.com/flexispot-b...
💻 Cybersecurity PC Build Parts
[Processor] Intel Core i7-13700K 3.4 GHz 16-Core Processor: amzn.to/3OlTTUK
[Graphics Card] Asus DUAL OC GeForce RTX 3060 Ti 8 GB Video Card: amzn.to/3OE0bkd
[AIO Cooler] Corsair iCUE H100i RGB ELITE 65.57 CFM Liquid CPU Cooler: amzn.to/3DEUUT9
[Motherboard] MSI PRO Z690-A WIFI DDR4 ATX LGA1700 Motherboard: amzn.to/3Ol9La8
[RAM](2x) Corsair Vengeance LPX 64 GB (2 x 32 GB) DDR4-3200 CL16 Memory: amzn.to/3OlsgeM
[HDD] Seagate IronWolf NAS 8 TB 3.5" 7200 RPM Internal Hard Drive: amzn.to/3DFdc6K
[SSD] Samsung 980 Pro 2 TB M.2-2280 PCIe 4.0 X4 NVME Solid State Drive: amzn.to/3KpTnnQ
[Case] Corsair 5000D AIRFLOW ATX Mid Tower Case: amzn.to/44Rjaxf
[Power Supply] Corsair RM850x (2021) 850 W 80+ Gold Certified Fully Modular ATX Power Supply: amzn.to/478wC1r
[Fans] Corsair iCUE SP120 RGB ELITE 47.7 CFM 120 mm Fans 3-Pack: amzn.to/44R4myD

Опубликовано:

1 июн 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 422

@eman0828 4 месяца назад

The I.T as a whole industry is effected by burn out because of the constant up keep in skillsets and technology changes. Doesn't mater if you are a Software Engineers, DevOps Engineers, Sysadmin, Network Engineer... This is expected in this kind of field.

@collinsinfosec 4 месяца назад

Fair points here! I can only speak from a security perspective as this is the industry I am in.

@Guilhermeabcd 4 месяца назад

and with the AI craze and layoffs, that's getting more and more agressive. It's expected that you sacrifice your other interests and hobbies so your job can be not just your job, but your life style. There's always a sense of "i'm not doing enough, not studying enough" and this can be very draining. I'm happy that i'm learning to cope with it.

@saby7825 4 месяца назад

I definitely feel the burn out from it. I lost my passion for it and it sucks.

@alastairtheduke 4 месяца назад

I think the deep knowledge, the stuff that's never going to go away is the most important thing. The experienced pros know, that what's new today is forgotten tomorrow@@Guilhermeabcd

@dmitryi3761 3 месяца назад

@saby7825 I'm the same. A few times I was seriously planning to switch career and become a builder to bring more meaning to my life I guess. Once I realised, being in IT for the past 15 years, is that anything you created can be erased in a matter of a split second.

@joechrisman4661 4 месяца назад

Decided to go back to school for cyber security thinking i would land an entry level job. I passed all of my classes with A's but couldn't get an interview. Was never told to try and get a job in the field while in school. I ended up getting a job in supply chain logistics and killing it because of my experience in SQL. I don't regret going learning and it kind of helped me get into what I'm doing now.

@collinsinfosec 4 месяца назад

What matters is that you persisted and got a position in a field you are good in!

@Hvleos 4 месяца назад

Im legit in this situation now... applying a mass amount and working on sec+ right now...

@filibustergaming3848 4 месяца назад

@@Hvleosapplied for like 6 months with some decent interviews but as the video pointed out they want someone with work experience, home lab, etc. I’m just thinking to myself why do I need all that when I can learn anything about a basic tech support job in a few weeks or a month while doing the job. Like I got MIS degree and Cybersecurity Management cert from university and that’s not enough apparently. Currently not applying because of life situation and need stability with my current unrelated to IT job. But just wondering what do I want to do, and what do I really want to learn on my own and hopefully find a job in that sector.

@InfoSecWarden 3 месяца назад

Homelabs and personal projects help get that foot in the door.

@DarkBanksy 3 месяца назад

Hey any update? Heard anything back from any of the employers? @@Hvleos

@Good_health220 3 месяца назад

It isn't really about skill or degree it about who you know" facts right there another tech youtuber had said the same connections do matter in this industry.

@LuceGrey-gg3sy 3 месяца назад

Honestly, I paid 2k to get linked up to a good paying job . 😅

@stanleygorge8975 3 месяца назад

I really need a job right now , if I find a good link up , i will pay 😢

@annabelledaniel5315 3 месяца назад

For real , it's all about connecti now , the competition in tech jobs now is much , if yu find real source , please share 😢

@LuceGrey-gg3sy 3 месяца назад

He's name is CONNECT WITH JEO

@LuceGrey-gg3sy 3 месяца назад

He is on l.G

@tracyrreed 4 месяца назад

Thanks for being honest with the people. There are a ton of people out there selling something giving people the idea that they can easily get into security. I have 25 years of experience in the industry and it pains me to see some of the ways beginners are being misled.

@collinsinfosec 4 месяца назад

- "There are a ton of people out there selling something giving people the idea that they can easily get into security." I agree! There are a lot of influencers and training programs selling the dream with very expensive courses and training. I would be a hypocrite if I didn't disclose I have a small, affordable course out there myself. But I have always tried to be realistic. There's so much to this industry that I didn't realize. And I have a lot more yet to learn. It's not a one-size fit-all solution. Everyone's situation is different. I was misled. Especially about the training and industry expectations.

@KevinSanti 3 месяца назад

what would be your recommendation to get in the industry?

@kjosephf 3 месяца назад

@@KevinSantidon’t get in

@imnottree 3 месяца назад

@@kjosephflol why

@ktfoat 4 месяца назад

It is a very interesting industry and the advice I'd give to newcomers would be: 1. Make sure you are having fun (it's a fun job after all) 2. Stay hungry 3. Be curious about everything 4. Work on your work life balance and stress management 5. Knowing when and how to take a break 6. Find friends, colleagues who are passionate about this field. Work on things together, discuss the topic together. You'll grow together Good luck

@inamtahir3085 3 месяца назад

thanks your comment give me postive energy

@alexapam2300 3 месяца назад

Thanks sir.

@Bangarang341 2 месяца назад

Thank you

@XanderMuze Месяц назад

Thank you for that perspective and advice, I will keep this in a note for myself and act towards living through these steps. Intuitively, I feel that these few points are absolutely key to finding satisfaction in IT and pretty much any job title or industry.

@explore5130 29 дней назад

You are a true motivation ❤❤

@jeremiahbray2952 4 месяца назад

Grant has done a great job of giving a fat reality check in the field of Cyber. This is a complicated field, only for those truly passionate and dedicated enough to fulfill the missing skill/talent/experience that's needed.

@collinsinfosec 4 месяца назад

I appreciate the words here @jeremiahbray2952 - sometimes I think the videos can come off as a bit negative and perhaps a bit "gatekeepy", trying to discourage new applicants. My intention is not to do either of these. For me, I had these expectations as a university student and I thought this industry was going to be a bit different. Maybe some will benefit from this perspective.

@harshsharma7505 4 месяца назад

This is correct , the daily work is mostly of triaging the incidents, closing the tickets on soar , reviewing dashboards, giving shift handovers. The burnout is real when you are the only one to tackle the red team incidents , learning new skill sets but I believe this is what we do as in Cybersecurity. We are on a thrill of not getting the company compromised. Learning new ways to defend and harden the security posture. Huge Respect to our community and I am proud to be in it.

@saby7825 4 месяца назад

Glad to hear it and learn the day to day. Your passion is definitely showing.

@rickmartin3571 4 месяца назад

I'm a Cyber Threat Analyst for a MSSP and I thoroughly enjoy it. Surprisingly, it's not the actual job that I enjoy the most it's the environment that I work in. I've been able to reach out to cross team members and have them train me on certain things and be apart of different projects to upskill. Looking at logs all day has gotten pretty mundane and I'm searching for more of a challenge.

@sunset6958 4 месяца назад

How are the coworkers in the workplace like e.g age range, ethnicities etc?

@rickmartin3571 4 месяца назад

@sunset6958 I'm not quite sure of the age range but if I'd take a guess based on their voices, I'd say it ranges. There are only 3 black people in the SOC and everyone else is white. Everyone is pretty helpful though, I have 0 complaints. I've probably learned the most from the white guys that were younger than me.

@rickmartin3571 4 месяца назад

@sunset6958 Also to mention, I work remotely.

@jadersanctem 4 месяца назад

I'm learning Linux with the expectation of getting into cybersecurity, and your videos have given me so much. I appreciate that you make these honest takes and share them for free for all of us curious souls

@CasiodorusRex 12 дней назад

Ummm.. you should get your CCNA first since security involves firewalls.

@podgorsky 3 месяца назад

I'm in industry for over two years as Incident Responder and I agree with most things you mentioned. Getting into this field and maintaining high level of engagement requires dedication. Navigating through different expectations (self included) is challenging and can lead to burnout periods without focus on sustainability. All my cyber people, be brave, choose conscious and be kind to yourself !

@michaelanim7024 2 месяца назад

I love your honesty you come across as a genuine person. I love that.

@BaroWolf 3 месяца назад

I just landed an analyst position with a market leader and I think it was more timing than anything that landed me the role. There's literally hundreds of jobs advertised, but they all require years of experience, so as a student without professional experience you are going to be fighting to get your foot on the ladder. That being said, it's not impossible, just keep working towards it and take any IT job to get your experience started.

@Z10Nmap 4 месяца назад

Let me start by thanking you for putting together a video such as this stating the nature of such things. I completely agree with you when you stated that if you are not learning something new every day, you feel as if you are going to get left behind or you feel inadequate. That is something that I feel as well when I wake up every day and I go to work. Its a personal struggle for sure for many people not just those in Tech. The Cybersecurity world has a lot of glamour to it and a bit of a romantic side even but the true nature is that it has a lot of information and a lot of constant work need in order to stay one, two, all the steps ahead of an attacker. Thank you for creating this and sharing this with the the ones who truly need to hear/watch it.

@collinsinfosec 4 месяца назад

"The Cybersecurity world has a lot of glamour to it and a bit of a romantic side even but the true nature is that it has a lot of information and a lot of constant work need in order to stay one, two, all the steps ahead of an attacker" Very well said! I agree. Happy to share.

@omarbarron1767 4 месяца назад

Decided to change careers late in life …15 years of loss prevention/investigations and now studying for my A+ and Security+. Learning a whole new skill set and looking to break into an entry level IT job. Thanks for an honest video. Lots of these boot camps just make it seem like you’ll have a job lined up after completing it and that probably isn’t the truth always.

@Sifar_Secure 3 месяца назад

I'm in a similar position. Gained A+, studying for sec+. I recommend getting into AWS cloud as well. I have the Practitioner cert and intend to get the Solutions Architect. Not only is AWS a popular cert to have, I find that studying helps to expand one's knowledge of enterprise level IT.

@tripsix2186 3 месяца назад

I'm a help desk support specialist. It is a good start to entering the field and rounding out your skills. One may have to start there and then shift to security which I hope to do. There are so many entering the field, just find a way in!

@CasiodorusRex 12 дней назад

Go do something else other than IT because you will age out. No one wants a 50 year old IT guy so your career will be over sooner than later.

@CubensisEnjoyer 4 месяца назад

The silver lining about those entry-level jobs vs the higher paid positions is that once you finally break in, you begin to understand exactly how you can grow into those higher up positions. I'll be hitting that 1 year milestone this year and I feel like I'm basically in the same spot as you. On top of the alert fatigue, I've noticed that sometimes I'm the only one taking a critical approach to our processes. Which is good for me, but it kind of puts me in a lose-lose situation because if I identify a new issue, guess who gets assigned all the work to fix it? 🙃

@collinsinfosec 4 месяца назад

Well said! Try to keep up the good work 💪

@Sonicstillpoint83 4 месяца назад

What job titles should I be looking at for that first entry-level position to grow from? I did the whole ITF+, A+, Network+ and Security+ certifications thing, since my BA wasn’t in the tech field, so I know whether things are more vegetable or mineral, but I’m not sure where to go from here.

@CubensisEnjoyer 3 месяца назад

@@Sonicstillpoint83 Pretty standard answer here but I'd say go all in trying to get a SOC Analyst position. Chances might be better at a MSSP, bonus points if they provide other IT services or if they work with government clients. Those are the conditions that helped me land my job - a separate IT team means the SOC Analyst role is more focused where a beginner can succeed, and if they have an open position you know they want the role filled ASAP for clients. That's the ideal way especially because your certs are a good fit in that scenario, but apply to any SOC Analyst position. It feels much better to explore more preferable job titles once you've broken into the industry.

@CD-rt8wj 3 месяца назад

I would like to echo @sonicstillpoint83 's question - what was the title of your entry level position? Did you go to school for this field or did you make a change from a different industry?

@rq8045 3 месяца назад

Please tag me if you get an answer!@@CD-rt8wj

@LifeofTariq 4 месяца назад

Love the take, but as someone who was born in a poor community trying to get into cybersecurity I can never be burn out of it just because the financial gain of it. Its my motivating factor for me to get more certs, more networking with people, going to tech conferences, learning something etc. Idk who can relate but thats my take on being burnt out.

@Alex2626GS 4 месяца назад

I completely agree. I'm a 36 year old truck driver and going to community college at night. I don't think burnout is something I have to worry about. I'm trying to get my foot in the door any way possible. I don't mind doing anything in the IT world.

@nyckillaheat 4 месяца назад

the reality is that breaking into any major industry is tough. most people are sold on this idea that just getting a degree alone or some certs means you get the job and it's all sunshine and rainbows. it's a lot of work but nothing that should turn you away if you have a passion for this side of the teach industry.

@user-do8xf6bc8d 2 месяца назад

Thank you for the honesty!❤️🙏🏼

@BenTruong 4 месяца назад

I’ve just started working in cyber a few months now, and I can already agree with the points that you bring up in this video, but I wouldn’t want it any other way. Great video Grant!

@ibrahimshakir1392 3 месяца назад

Congrats!

@Cameupoffa2 2 месяца назад

Hey man, im a canadian highschool wanting to get into cybersecurity or even just IT in general, i have a bit of experience with burp and putty and I honestly just wanted to hear what you would tell a highschool student wanting to get into cybersecurity

@ibrahimshakir1392 2 месяца назад

@@Cameupoffa2 Hello there, I know that your reply might not be directed to me, but I will tell you my experience... First of all I still haven't landed any job in Cybersecurity, but have always wanted to and here are some mistakes or rather some stuff that I missed since I started from the beginning... 1. I should have been more creative, not just follow what "that CTF room" is guiding me through. 2. Search for some team so we can share some ideas (you might find some people from school/university), maybe then you can have some amazing team-projects. 3. Getting at least one certificate in that field so it can help you out (WHILE) doing the stuff mentioned in 1 and 2, cause otherwise you'll end up either full of "forgettable info" or "feeling like wasting time" cause you might know that already... 4. and the last, just focus on what you're goal is, like there you can be a hacker, researcher, analyst, pen-tester, whatever, blue team, red team, yeah... if you want them all you get none of em... Final note (Do not take it as YOU SHOULD but just get the general idea): I'm currently working as a technical support specialist at an ISP...and like yk, that's unrelated, and gave me a good kick start in terms of work, so I'm constantly warning them about vulnerabilities here and there while getting in that field more (by doing some more rooms on HTB and I'm also a home-lab I am making "so simple"), also there are a lot of unexpected stuff to happen, like literally work life is very different, you also wont go to a random company and say "Hey!, I'll hack/protect/discover you, whatever", there are real world scenarios, just know that... Wish you all the best, good luck.

@zedsec 4 месяца назад

I've been in security for several years and I'm still struggling to find the personal chef at my company! A lot of these videos will usually have you thinking you'll be taking half days and having catered lunches every day. Love the video!

@AzharKhan-ty6pe 4 месяца назад

I agree with all the points you just mentioned. I am a fresh graduate with CS background and am jumping into cybersecurity.

@rafaelalba0910 2 месяца назад

Love the honesty, thank You !

@cartma24 4 месяца назад

Maan, you are spot on what I am feeling. This is reality. I have been working as a non-experienced cybersecurity analyst and all 3 point are exactly what I have been realizing, it is a lovely career but you can not stop learning, there is just so much to learn.

@user-xi4on9rt8u 8 дней назад

I love how real you were in this video. It is needed because a lot of people are selling how easy it is to get into this industry. It requires dedication. I also love how you talked about burn out. It is so true. Thank you for being real.

@crypt2828 23 дня назад

You are doing good work with these vids bringing out the reality of things. I think the industry is getting a reality check for years of unrealistic expectations over the years. You definitely have to have a passion for it too - burnout is so real lol so thanks for bringing that up

@nostalgicnow6001 3 месяца назад

I love this video because you were being real. Much respect

@soulssearching6659 4 месяца назад

the alert fatigue really hit home. as i just started gettin into IT and i have other interests that require alot of studying. my time management has gotten more tight, i personally have to work intervals throughout the day and then take a walk or stretch and eat or something. as well as planning time to take a step back from everything (perhaps a vacation) when u can. i do look at the internet/techonolgy as the digital universe and just like our universe, theres so much to cover, adapt to and take in.

@mattymallz4207 3 месяца назад

Great video Grant. Made it very easy to hit the subscribe button.

@romanlukichev4971 4 месяца назад

Great video. For me as a person who is working at non-skilled job and learning some python programming for data science and data analysis at online university courses. I already know a lot about the tough realty that I live in. Companies are hiring people with recent experience.

@cosmicsea89 23 дня назад

Great job setting the record straight, Grant

@taylorharris9609 Месяц назад

I started my first job in cybersecurity a little over a year ago, after about 3 1/2 years in support and I have to admit that I got a little burned out after about 6 months. Mainly, I think I went a little "too hard" my first several months and was literally doing nothing but "cybsersecurity related" activities (finishing school, HTB, reading, podcasts, other things). I definitely found that you need a balance like any other job and it's okay to not further your knowledge every second you're not working. After I found a balance, I've definitely been more at ease and enjoy the space more.

@smorinator 3 месяца назад

Sometimes i feel the hardest part of the security side of IT is not, knowing what the attacks are, how to defend against them, or even how to perform them. The hardest part is just convincing the companies and their users to go along with solutions and pay for them when necessary. You have to be more of a salesman than an IT professional. Especially because if there is a major security incident, even if you offered a solution that was rejected that would have prevented it, you're still going to be blamed for it.

@Carsia 4 месяца назад

You post and I drop everything almost immediately to hear what you have to say. lol. Going into year 3 myself and I feel burnout often. I do security, privacy, AND compliance on my team and they all take different approaches. I have to know some of everything from securing infrastructure to knowing different laws and even project management and auditing. I run off the clock at 5 and don’t look back.

@ajjrp 3 месяца назад

automatic follow after this video. I am currently half way through my degree and this is the most important thing I have consumed. I appreciate the content

@robyee3325 4 месяца назад

Great content man keep it up

@Ironiclobster69 14 дней назад

I’m actually starting a bootcamp thing that’s like 3 months long. You get 5 certifications from it. Doing this while I just make a living from home anyways so i thought why not. There are several different ways you can pay for the training and I chose for it to be deducted from future salary until paid off. They only deduct when you are making a certain amount and you are only required to pay them back if they land you a job which is cool so I said why not. Worst case is I don’t land a job and learn a bunch of stuff for free. Best case I land a job and pay them back, and if they get me a good job I’ll pay them back fast. I mainly want to try it out because I like the field and the remote work.

@MrWebcammer 4 месяца назад

Hey Grant! Great video, also loved your last one on IABs. Been subscribed for a while now, we were on similar paths when I found your channel as I went back to college from 2018-2021 and got an IT and Cybersecurity degree. Ended up in a do-it-all type of IT position in local government. This is random af but would you want to start a podcast? I think it would be cool for us to be able to talk about our real world experiences as early career IT professionals that could really help a lot of people exploring or getting into the industry. Could also talk about hot topics in IT and I think we would mesh well together. Either way, keep up the great work man and I continue to follow your journey!

@jdogg9053 2 месяца назад

Getting my associates degree next semester and I’ve come to realize that there is still tons of information that I have yet to learn. I’ve also had no luck finding a internship or job in any IT related role. Although this sort of makes me want to just give up I’m going to keep on learning new material and implementing it any chance I get. Your videos are very influential and realistic compared to other channels big s/o to you for keeping it real!!

@fcjpm1 Месяц назад

Im here with you man. I'm trying to refresh my knowledge in Python, learn Linux (started using it as my main system) and trying to set up a homelab server to tinker around with network configurations to learn about security. It scares me to think that I won't be able to get into the field when I graduate, but I'm also excited to keep pushing to make myself worthy of entering the field. We're all gonna make it boys

@it_security_courses_online 3 месяца назад

Cyber is definitely a constantly changing field

@tracyrreed 4 месяца назад

There are not unfilled jobs in cybersecurity. Maybe there should be to protect our data but there is no money for it. Security is always considered optional and is the first thing to be cut.

@brightdorian2890 3 месяца назад

exactly

@Stonedroller 4 месяца назад

Thank you so much for this video! Keep them coming brotha, I love the realistic take.

@collinsinfosec 4 месяца назад

I appreciate the kind words here. My intention is not to come off overly pessimistic about the industry. Hopefully this provides a more transparent / realistic overview. Cybersecurity is still a great industry!

@Stonedroller 4 месяца назад

@@collinsinfosec I am about to graduate with a cyber security associates degree and I’m about to take my sec+ and as I look for jobs and talk with my current internship opportunity I find there is a bit of overhyped talk on jobs and pay in the cyber security industry but I’m not allowing it to keep me from perusing it even if I have to work at a entry level for a while

@mico99odoop85 3 месяца назад

@@Stonedrolleryou say that there is overhyped talk on pay but would you agree the pay is definitely over 80k?

@theitblogdotinfo 4 месяца назад

Love that quote "more of a talent and experience gap". Interesting you are seeing the politics side of cybersecurity after year 2. Its 100% a company culture issue. Not every company is all in with their cybersecurity program. The most valuable skill you can grow (over any technical skill) is to learn how to "sell" the needs of the Cybersecurity program BEFORE a breach.

@methuseus 3 месяца назад

This applies to many IT positions, or even many skilled, non sales positions. Definitely how hard it is to break in, but also the hurdles to accomplish anything as a junior associate.

@HacknMate 23 дня назад

cybersecurity is a lifestyle. It's not for everyone. If you are not 100% serious with it: breath it, drink it, eat it; then it may be a little tedious for you.

@gotthecutenessoverload1086 2 дня назад

It's one of those careers that WILL consume your life. I know guys in cybersec who've become shut-ins. They're making good money but have absolutely ZERO social life.

@HacknMate 2 дня назад

I don't agree with the career that consumes your life. I know many people who are pretty social and cool who are long time professionals in cybersecurity @@gotthecutenessoverload1086

@chuksjerahmeel1355 4 месяца назад

Thank you for this honest clip

@collinsinfosec 4 месяца назад

Thank you for the message!

@The_beast_fan_club 4 месяца назад

Thank you for sharing the information and the experience you went through

@collinsinfosec 4 месяца назад

Happy to share. This is just my experience. Everyone has a unique perspective, it's good to ask around as well.

@zodiark619 2 месяца назад

Still in my first year as a cyber security analyst and it's been non stop learning. Previously, a L2 support for 4 years, but this one year alone has shown me how little I really know. That said, it's a rewarding role since you're constantly learning day in, day out.

@InfoSecWarden 3 месяца назад

I agree with everything you said Especially the skills gap. They key is if your company is not huge with lots f different types of cyber professinoals you have to real continue to learn and study outside of your job laerning new things. If you dont do that you will stagnate and have a hard time moving up. Interviewing alot of candidates for mid to senior positions alot are too tool oriented without fully understanding the fundamentals of logs, what a compromised device would potentially look (lateral movement, exfiltration, kerberos attacks, etc..) If you have a solid understand of those things without using qradar or crowdstrike I think quite a few hiring managers would take anyone for junior- mid positions.

@KasK6517 4 месяца назад

I've been a firefighter for 7 years now and I wish I knew how much I would be struggling financially before I jumped into this career. Don't get me wrong, I love my job and no matter what I decide to do this will forever be the best job I'll ever have. Unfortunately, it doesn't pay well. I've been thinking about getting into cyber security and it stresses me out thinking I might not be able to land a job for a couple of years after I have all my certifications and entry level jobs such as front desk might not pay well either.

@ivanshmilyk7614 3 месяца назад

thank you for saying that all!

@andreas7623 4 месяца назад

Thanks for your content it's very enjoyable! - Keep up the good work!

@collinsinfosec 4 месяца назад

Thank you for the kind message!

@daler_anvarov 3 месяца назад

Really appreciate your effort and do watch your videos thank you Mr)

@verasalem5071 3 месяца назад

#3 is common for IT in general. At one of my job, alot of people were new to IT (1-3 years) and I can tell they were suffering from burnout. Once you hit the 5 year mark in IT you are a lifer and that's really when you can get the high paying jobs

@sandwichfellow1992 3 месяца назад

Currently in my last semester of undergrad studying cybersecurity and I'm realizing that I really should've taken the time through my studies to maintain my technical skills. I've got Sec+ and currently "backtracking" to Net+ to get a decent refresher on networking. I'd say my biggest regret was not trying to get experience while in school but I'm optimistic about the getting into the field end goal rn is pivoting into cloud security.

@ChineseRatfaceCHANG 3 месяца назад

Why didn't you take CS and then branch into cyber sec? If you don't understand low level sysinternals you'll never make it since you won't understand how things actually work in terms of malware, memory management, etc. Those cybersec undergrads are a scam and most stay unemployed for a long time

@FaradaySenpai 4 месяца назад

Thanks for another great vid

@collinsinfosec 4 месяца назад

Thanks for the comment here. Hopefully this video can be informative. I still have lots to learn myself!

@saby7825 4 месяца назад

My experience from working on and off in it support for 3 years is that i got burned out from it. It sucks to lose your passion for something. A part of me wants to stay in it, but another part of me wants to do something else. It's frustrating being stuck like this.

@DaveOu 26 дней назад

Did you figure it out?

@buildcarolinahomes 15 дней назад

Thank you, Grant.

@Guilhermeabcd 4 месяца назад

Those cybersecurity carreer videos lead me to reevaluate and rethink some important stuff i need to come to terms with since my last burn out in the industry. I'm writing a journal about it, and i find your content inspirational. Thanks for the upload!

@saby7825 4 месяца назад

I've been doing some writing too, if I decide to stick with IT, I may shoot for sysadmin work instead of cybersecurity. I am a hands on guy and like the hardware side more than the software side of computing.

@Guilhermeabcd 4 месяца назад

@@saby7825 in my case i think i need to leave threat intelligence behind and maybe start considering specializing in malware development and other red team related skills. Shoot for a solo carreer or become a professor? It's all confusing now. Well, the best of luck to us!

@saby7825 4 месяца назад

@@Guilhermeabcd if you're interested in red teaming, I'd say go for it. Best of luck whatever you decide to do!

@matthewdeyn5530 3 месяца назад

Thanks for sharing, I'm about to start my first job in the industry after a long period of studying and working hard to get into it. Excited to be on the journey

@carlosmaldonado7375 Месяц назад

Do you have experience or certifications?

@Hvleos 4 месяца назад

Im a veteran with no cybersec experience in the military and went back to college for a cybersec degree. Its still disheartening putting in all these applications and getting rejected. Ive often thought of just reenlisting. I hated my life but at least I could afford some more consistent things...

@BandanazX 4 месяца назад

Re-enlist and make sure you have an active security clearance. Then the gravy train flows. Companies that demand a security clearance won't hire anyone without one. You can be a green cybersecurity job prospect, but that security clearance is what they really want.

@atlfun08 3 месяца назад

Jobs.gov, apply to any entry level IT. Also network at IT events, you just need 1 person to give you a chance and then your in. Best of luck!

@ghostirq 3 месяца назад

@@BandanazXis secret good enough or do you need TS?

@BandanazX 3 месяца назад

@@ghostirq Check the postings at your various contractors like Booz

@alienJIZ1990 3 месяца назад

I agree with your take on it. Realistic expectations are important. I've had several people ask me how to get into the space from unrelated careers and I'm self taught on everything with over a decade of professional IT experience alone and 25+ years as a passionate hobbyist tech nerd, so I have no idea how to even answer that, other than to tell them to focus on building their skill set - it's all employers care about, including me when I'm scouting for new team members. To understand security, you have to first understand how everything works before you can understand how to secure it - it's the first thing everyone should learn but the last thing to be capable of fully understanding. It's not something anyone can easily just jump into - you level up your skills over time and expect to start small, especially if you're not technically inclined and have no experience - no one's gonna pay you 80k a year if you've been working at Kohl's the past decade unless you can show you have the skills to be worth that much. Can you do the job or not? - is all that matters to employers. But once you have the skills and are armed with knowledge, you can go anywhere, certs or no certs, and just be like "K. Ask me shit doe." Answer their questions and they're gonna want you like the hot girl at the dance

@dreamhazer342 3 месяца назад

Hi there. What are the ways in which a university student accumulate experience during their studies? Please do give your suggestions. Thank you, Have a nice day!

@alienJIZ1990 3 месяца назад

@@dreamhazer342honestly, one of the best things you can do is start deploying Windows and Linux servers at home. You'll learn a ton about infrastructure, client/server communication, how network traffic communicates, different quirks and issues you run into, etc. Ideally you have a next gen firewall and managed switch so you can mess with VLANs (Unifi Dream Machine Pro world probably be the easiest all in one route so you don't have to piecemeal different network devices) and creating intelligent firewall allow/deny rules. Also get familiar with Hyper-V and VMware ESXi virtualization, how to back them up and restore them, and I'd get familiar with Docker as well. Maybe set up an NGINX proxy as well with certs too. Maybe also set up your own WireGuard VPN and secure it so you can securely connect when you're away from home - good for learning the difference between UDP/TCP imo. The enterprise space generally functions the same, just sometimes using different solutions than stuff you'd run at home, but the skills easily translate and employers love that, it shows you're passionate about learning. From a strictly cybersec perspective, get familiar with EDR (and understand how it differs from AV), SIEM, SOC, SOAR, vulnerability scanning, patching for CVEs, possibly pentesting or at least an understanding of it, etc. One RU-vid channel I'd recommend is NetworkChuck - I don't always agree with his approaches but he's almost always on point.

@3141xxm 4 месяца назад

Tbh, if you want to get into cyber the easy way just join the military. Serve a few years in a cyber MOS/rate( most of which provide a pretty comfortable living- you should focus predominately on the Air Force/Space Force), soak up all free training courses/certs that are available, get a TS/SCI with a polygraph, and actually walk out with a 6 figure job lined up for a defense contactor or even a government agency. I have done this myself and know a ton of people that have followed the same route. Its much easier than trying to break into cyber with as a civilian with zero experience.

@BandanazX 4 месяца назад

That's the cheat code. The government contract requires the security clearance, not any cybersecurity proficiency.

@JumpinFatJack 3 месяца назад

Before watching this video i was thinking about paving the same route you took for myself ... im in the process of getting my comptia A+ cert ; up until i get security + before i join . Im kinda afraid that ill score low on my asvab and that wont even be a job opportunity for me . Just a little fear i have .

@3141xxm 3 месяца назад

@@JumpinFatJack You can always retake the asvab if you dont qualify. Theres also tons of study resources out there. Good luck!

@Ghoseum 18 дней назад

hey man im a highschool junior getting my certs in both net+ and sec+, probably getting my a+ as well and really wanna do cyber as a career path. Im really thinking about joining the air force in a cybersecurity field while going to college in hopes of getting a security clearance.. do u have any advice for me? like should i stick with my plan or should i not dedicate those years to the military and instead focus specifically on other paths. I'm not necessarily lost with what I wanna do, but would like help from people with experience

@nightwing09x 3 месяца назад

Been trying to break into it for 2 years now. Stuck on Hell Desk, which is also repetitive. I have no illusions about the grass being greener on the other side, but getting a company to take a chance on you so you can at least earn experience in the field to put on a resume is daunting. Not much else can be done about the situation other than continuing to upskill outside of work. Great video btw.

@blackwhitegrey001 3 месяца назад

I’m in the same position. The only recommendation I have to is to either get certifications that are recognized by companies or government. Learn coding and start projects on your own. Just grind it out until you get an interview for an entry level. Once you get the foot in the door, do everything to absorb as much information as possible.

@nightwing09x 3 месяца назад

@@blackwhitegrey001 good advice but there is no need to “absorb all the info” companies don’t hire ppl to train them be qualified enough to do the job from the start

@nun_uh 3 месяца назад

@@nightwing09xthere are Google courses which you can complete that you can put on your resume

@InfoSecWarden 3 месяца назад

Intellectual curiosity and self motivated lifelong learning are both things that really help as well..

@HM-rd7iy 3 месяца назад

Great video! thank you for posting it. I wish I've seen it last April when I started to work on my sec+. I worked with DOD overseas. decided to change my career to cybersecurity. I was under the impression of having the sec+ with security clearance along with DOD analyst experience would be enough but it's not! the job market is crazy. I am competing against experienced people with a lot more to offer and it's almost impossible to find a cyber position that doesn't require more than 3-5 years of hands on experience! I am regretting it already. I just couldn't be away from family forever so I was hoping to settle having a M-F job in cybersecurity but I guess I was wrong! tired of applying and not hearing back or being ghosted out by interviewers....

@BlakeWilliams4u 2 месяца назад

I hear the Cybersecurity domain map helps a lot when it comes to finding a way in based the path you want to take

@tegrity5822 2 месяца назад

humble and honest.

@dungeonmasterarmy7008 3 месяца назад

As a cybersecurity student myself, I have been told to look for a job in the industry while still in school. I've been following this advice and looking for a job for a few months now. I am having an extremely difficult time. I don't have a degree, I don't have any certs, and I don't have any experience, so I get turned down for even "entry level" positions. It's rough out here.

@MuffFlux 4 месяца назад

I realized recently that the entry level or first job difficulties makes a lot of sense actually. Cyber security students understand you need to implement the best security measures possible for a specific system based on constraints like budget etc. But fail to realize that if you had something so valuable it is worth employing and paying people specifically to protect it, would you hire the guy who has been protecting stuff for 10 years and seen it all, or a student/person with a couple of certs who has studied theoretical "book" knowledge and experimented with a couple of projects here and there? I know which I would choose if I wanted my valuables to be safe. Think of the same scenario with physical security like protecting a bank vault or high value prisoner or something if your brain can't make the jump to understanding the cyber analogy.

@CHRIS198490 2 месяца назад

yeah but it does not make sense have you ever heard about Junior position

@Vorto 4 месяца назад

I am just getting into it and so far I love it. Sometimes it can get overwhelming but I've always loved to learn new things and be that guy that Is always finding a program or a better way to be efficient. I get board i love solve problems. I also quit and all my cards are on the table. I'm hoping once I gain a little bit more experience I hope I can find an entry level job. 😅

@LOSisBEAST2 3 месяца назад

To help with overload/learning is to do it at work if possible and once you're off....DONT THINK ABOUT IT. Sure I'll read an article here and there but being able to close my laptop and go on with my day/life is great and needed to be fresh.

@k_usuan 4 месяца назад

Bravo to you Gran

@trbtacmedic 4 месяца назад

I have recently thought about how much psychology would be beneficial for cybersecurity such as criminal psychology and organizational psychology. At the same time I am about 9 months away from having my degree and will be starting my job hunt soon.

@Skye19228 4 месяца назад

So true so right 😢 mutual feelings

@alexhamilton3522 4 месяца назад

With your resume it also helps to write your years of college as experience. Technically it is, as you've been working on all sorts of projects throughout college. A real job usually focuses on about 10% of that, with most of it dealing with the ticketing software and other software/processes, but sometimes, depending on how your resume is written, it can help out. I got an entry level IT job and whilst it's not the one I wanted, it's far better than a retail job. I also feel that when it comes to organizing life and managing burnout, that the best thing to do is, for me, to set specific general goals. That is, for my training, they want me to get a certification. So I pick three days where I study heavily and 2 days where I study a little lightly. Makes it much easier to manage. But you have to stick to it.

@TerminologybyJc 12 дней назад

Thanks for that part of "looking at videos through a lens" very informative. I know I do not want to do networking.. hmmm... Forensics seems cool but imagine seeing graphic images.. that might be tough.. so I'm thinking security.. I have a previous career in physical security.. any thoughts are welcomed. thanks for the video..

@Cat-ed5cp 2 месяца назад

Took me 2 years on the dot to land a job in Cybersecurity from scratch. I agree that recruiters are looking for more than technical ability. Also great point on the culture and awareness piece. Your videos helped me a lot - thank you.

@SK-ju8si 2 месяца назад

Could you give me a little bit more information about how you got the job? Did you have degree? or any certifications?

@shimone1941 9 дней назад

Can you please share your roadmap to getting there and what job did you land in cybersecurity?

@corpuzone 2 месяца назад

Would you think it’s a better route to take Software Development vs Cybersecurity? Both of these fields are growing significantly with the latter increasing based on what I’ve researched. Though, to get your foot in the door requires projects to present to potential employers as your “hands on “ experience. The degree and or certificate can help, but need to showcase your ability to either code or know the intricacies of either of these two career paths.

@Raymanujan 4 месяца назад

hey thanks. that was helpful.

@collinsinfosec 4 месяца назад

Happy to share! Thank you for the comment.

@kochaw7671 3 месяца назад

16 years in the industry, recent role security engineer, this is spot on :)

@TheUsasam 3 месяца назад

So true, I have a bachelor's degree in computer network a cybersecurity certification and I definitely thought that I was going to get a job in the IT field easily. I've applied for so many jobs in the reality is without experience is much harder.

@brightdorian2890 3 месяца назад

I think cyber security is not for everyone, you have to be very passionate about it and highly motivated. Besides, organisations, companies and individuals get it wrong when it comes to cyber security, the way employees are hired, certifications, e.t.c I just think there isn't much of a solution when it comes to cyber security

@speelangs7161 4 месяца назад

Having 20 years in cybersecurity, I can only say.....companies or customers interest are not focused on solving security issues. They don't care. Now everybody wants to work on cyber security because its demand, but little do they know how complex, demanding, and frustrating it its to work in this industry. Cyber sec is seen as a liability.

@Jupiterxice 3 месяца назад

Exactly..... My last job made me rethink cybersecurity. Companies look at security like after thought. Especially big companies.

@speelangs7161 3 месяца назад

@@Jupiterxice Sincerely I work in cybersecurity because I were always curious and started it as a hobby and a I love it. But if you are looking for a rewarding job position.....Cybersecurity is not the place. Nobody will congratulate you for mitigating attacks which nobody will see. So, if you had experience already, maybe time to change strategy. Good luck.

@ajax9302 4 месяца назад

Not exclusively in cyber security but the IT burn out is real. Been in it 8 years and I'm starting to wish I was cutting lawns for a living. At least I'd be outside lol.

@dmitryi3761 3 месяца назад

I've been in IT and cyber for 15 years, and a few times seriously thought about switching to construction since I'm pretty handy. =)

@ShabazDraee 3 месяца назад

Dude I’ve been recently experiencing every single thing you said about feeling like you’re not growing, falling behind and even imposture syndrome. I appreciate you mentioned this is something you have to deal with, but I was curious to know, how you deal with this on a day to day. I recently experienced heavy burn out on my consultant/pentest job by over working my self because of those reasons you mentioned, and I wanted to know what your approach to this is. I know it’s not a straightforward answer but even a small advice can go a long way as I know it’s a process.

@ugochukwuejikeme8716 3 месяца назад

A very honest video. The burnouts are real. The stress and churning out of new stuff every hour is tiresome. Hey, but come to think of it, we soldiers in the cyber space, protecting the vulnerable. It's a price we pay for choosing the cybersec path.

@Yawnker 4 месяца назад

Im a student who got an internship as a pen tester last summer and that made me realize the field was not for me, respect to those who continue in the field but I would rather just code

@daniel173880 4 месяца назад

Was there something in particular you didn't like?

@AutumnRainWish 2 месяца назад

I am working in Tech Support kind of role and thinking about switching to Cyber Security but I don't want to be doing this support kind of role, so I have enrolled for a Masters program and looking into Compliance/Regulations side of security or Data Security.

@thurstonsalt6245 3 месяца назад

I’m literally in the same position as you were in, I just finished my degree and have a few certs under my belt. Iv been applying for jobs online since I graduated 2 weeks ago. How would you recommend getting my foot into the door? Looking for internships/graduate programs?

@bennywenny_ 3 месяца назад

i was hoping to get some tips on if i should go to college for cybersecurity or not? community college, or just getting certifications online? thanks!

@user-mg4ki9qk4k Месяц назад

IT Support Tech, working on my Sec+ cert and wanting to move towards CyberSecurity career

@franknoneofya9585 3 месяца назад

Have about 23 years in IT, trying to get into Cyber, mostly because i got tired of doing operational work. First and foremost, learn how to build relationships. Segmentation is real and you have to be able to communicate and leverage the relationships you build, as you may not have required access to do a ton of functions a task may require. Learn something you love, master it and dont try to know it all. Be resourceful, god only knows how many articles, how many forums, how many 3rd party support calls Ive had to make. Learn to take breaks when your body is asking you to, you cant enjoy the experience if youre not also enjoying your life.

@marcw.5492 3 месяца назад

I have 30 years experience in Networking and Office IT and Data management... what certifications do you think I need to pursue ? Also what Apps /software or hardware is common to detect network attacks and subsequent fixes ? Are most networks UNIX ? or Windows ? or does it even matter ?? Thanks for your hard work.

@andresperez193 2 месяца назад

Hey Grant, I am currently seeking a change in career and I was looking into the tech world like coding or cyber security. But was planning on taking on a bootcamp. Would it be worth it to do that? Or is it best to look for another career path, your input would be huge to me. Thank you!

@CarlosGomez-cb6ir 2 месяца назад

I'm just interested in it for my own curiosity. Don't think I will learn enough for a job. Just anything I can gain from watching videos is better then looking at FB reels

@NaomiBriganti-tk7in 3 месяца назад

Hi Grant, thank you for making these videos. Any relation to Andrew?

@BlockchainShango Месяц назад

Thanks for uploading. I'm switching fields because where I am jobs are pretty poopie for folks in my type of situation. I have a LOT of HR skill and experience but...no one's really looking to hire an old military vet like me, I suppose. Oh well. Crying about it won't fix anything or feed my kids, so I'm switching fields and will handle this, myself. Take care, everyone

@bcharles406 12 дней назад

I am trying to get into the sector. I am currently enrolled in a bootcamp and in my last 6 weeks of the class. I can confirmt he information overload and I often feel dumb because the lessons are a whirlwind, I work a fulltime job, have two children in sports, etc. At the beginning of the last 6 week final project I lost my grandfather and grandmother within a week of each other, and they fired my boss at work and thrust me into his role with no training whatsoever... It has been stressful nonetheless, but I have been really trying to push through..

@gotthecutenessoverload1086 2 дня назад

Have a backup career plan. Don't waste ALL your time and effort in a field where there is a lot of gatekeeping. Unless you have connections, a bootcamp won't be enough.

@johnportugal5589 4 месяца назад

I think security fails as a whole because security is rooted in the mindset that once you get in, you're done and no longer need to learn. It's also rooted with the mentality that you're going to be doing crazy things like "hacking." At least that's the way all the other channels convey this field to be. In addition, these gimmicky channels often sell you the idea that cybersecurity is an easy field to get into simply because of the demand that exists. When in reality, it's like you said, there is a lack of talent which is a contributor to the rise in positions available. It's very unfortunate to see how misleading those youtube channels are and truly appreciate how real you keep the information.

@APudgyPanda96 4 месяца назад

I'm a SWE with 6 YOE. I am looking to make the switch over to cyber security (have a road map of the certifications i want to get). Once I am ready would i still be applying to entry level positions or would my SWE experience let me apply to more mid level?