Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? This is the time and place to ask!

  • ddnomad@infosec.pub
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    From my experience, all of this is mostly done remotely now, SOC / cybersecurity / threat intelligence analyst is probably the title you are looking for.

    And it’s boring as fuck, most of the things are already set up, all alerting in your log aggregators, SIEMs and SOARs, playbooks for days, nearly 0 agency, just watch the feed, spot stuff and execute like a robot.

    That’s being said, it’s where a lot of security engineers start, and if you get through this you may actually get to the part that is more interesting and requires actual experience and knowledge.

    But imho you are far better off getting into security via software development / sysadmin /devops routes, it’s just way more interesting that way.