Started new position today: Sr IT Security Engineer

JoJoCal19 · June 2015

I was "promoted" two weeks ago from a Sr IT Administrator to a Sr IT Security Engineer on the Security Architecture and Engineering team at my current company (pay grade is lateral although they gave me a bump in pay, but the job duties are where the promotion is). It's an example of hard work paying off. After being hired into the Administrator role I was disappointed as the stuff I was doing was not using my abilities, but I didn't let that affect my hard work or attitude. Instead I killed my normal duties and volunteered when help was needed on the Arch & Eng team (my supervisor reported to the manager of Arch & Eng). It got to the point where I was dual-hatting and doing all of my normal duties, plus Arch & Eng duties on a daily basis. In February one of the Sr Engineers put in his notice and I went straight to the Arch & Eng manager and told him that I could step up into that slot and was more than capable of learning where there were gaps. He knew how hard I've been working and that I mastered the duties of the Administrator role in no time, and that I had been doing some of the duties of his team. Of course he knew my ability to learn quickly, and that I had the potential to grow into the new role in short order so the wheels were put in motion and two weeks ago I received the offer, and today was my first day.

After talking to my new manager today, I will be restarting the as of now defunct forensics program, as well as standardizing our incident response plan and capabilities. I've already been helping with vendors on products and solutions and have two POCs under my belt already, so I'll be continuing to do that aspect, as well as implementing new solutions. I'll also be working in a security architect capacity, which I'm definitely looking forward to (hello TOGAF!). And one of the big responsibilities I will have is network security and firewall monitoring. That's where my biggest weakness is so I will have to ramp up on those skills. My manager is already booking me for the CCSA course, and I will need get trained up at least to CCNA:S as we have both Check Point and Cisco solutions in place. These are just some of my responsibilities, and I am keeping the information security audits from my old position as I'm the current security audit expert.

Even though I've felt I might look to go back to a GRC/Audit role, this was a great opportunity and I didn't want to pass it up. The ability to learn skills and gain experience in new areas of InfoSec is a nice career boost. I still get to do GRC/Audit stuff so that's a win in my book. Even if you're not in your ideal job or position, put in the effort and do great work and you will be rewarded.

alias454 · June 2015

Good for you. Glad to hear your hard work paid off. Let that be a testament for continued success.

Deathmage · June 2015

Congrats man, you deserve it. It's been a long road coming and like many will say you put in the time and hard work and it will come back to benefit you later on.

Best of luck to you in the new position!!!

Mike-Mike · June 2015

congrats, good story

cyberguypr · June 2015

Congrats!

Chitownjedi · June 2015

Good deal...congrats on the opportunity

ccnpninja · June 2015

Good luck

Jasiono · June 2015

Very nice news!
congrats!

nascar_paul · June 2015

Congratulations man! You deserve it! I don't know that I would have been that patient, but it sounds like the work is fun and interesting and you like the environment! Great job man!

TheFORCE · June 2015

Good job man, congratulations!

kurosaki00 · June 2015

Sounds cool man! Gratz!

Mooseboost · June 2015

Congrats man! Sounds like you are happy with the new position. Best of luck!

NetworkNewb · June 2015

Sounds like a great new position! Nice work!

Mow · June 2015

Congratulations!

the_Grinch · June 2015

Congrats!! Definitely went about it the right way and once you get all the tech knowledge you'll have a much easier time moving into (or back into?) the GRC role if you find you still want to do it.

On a side note, people should heed this post. It's amazing what some hard work and talking can get you. You let people know where you wanted to be and you took on the work to get there. Not saying the members of the forums do this, but I have been in many a shop where someone will grumble about being stuck where they are and yet never mention it to management. While management should be in tune with their people they are not all knowing. As an example, when I left my last place a member of a team that was no where near IT asked about the program I had done at Drexel. I said I liked it and he said he was just finishing up a couple of the initial courses. Now he had never mentioned to his manager or my manager that he wanted to be in IT. So I went to my manager and said I found someone to replace me. He asked who and when I said who it was he was like really? Very quiet guy who just did his job and didn't put up a fuss (good or bad). Now he's kicking butt in the IT department. Speak up people

NetworkNewb · June 2015

+1 on what Grinch said! You can't expect your manager to read your mind. In my experience I've found managers love to hear when I tell them I'm interested in growing and learning more and they are usually willing to help. If you don't speak up, you could work your butt off each day but your manager just might think you love your current position...