Landed my first security job - My story
fabostrong
Member Posts: 215 ■■■□□□□□□□
August 2015 I decided to try to get into the IT field. I went to a trade school called my computer career for a few months. While there I received A+, Server+, Mobility+, and some MTA certifications. I knew I wanted to get into CyberSecurity but knew it'd be hard to get into.
February 2016 - July 2016 I worked a couple of desktop support contract jobs.
July 2016 I got hired on at an MSP doing helpdesk. Learned a lot. Over 400 clients and as a level 1 tech I was a domain admin for all of them. I was basically allowed to do anything to the client's environment as long as I knew how to do it.
One day I applied for a position on Craigslist. The ad said you could start off in desktop support and move into a number of other departments, security being one of them. They ended up offering me the job and when I put in my notice at my job, they said they were in the process of trying to get a security role going and if I stayed, I could be that guy. I was able to get them to pay for whatever security certs I wanted and give me a raise. I got the CEH and GCIH. Since GCIH was so expensive, they would only do it if I signed an agreement to stay on for at least 18 months. A few months later I got both certs and they ended up not being able to make the security position. I told them I wouldn't have signed the agreement if I knew that there was a possibility the position wouldn't be made. They let me out of the agreement, said I didn't have to pay it back if I left.
Updated my resume on a all job sites to now show the CEH and GCIH. A recruiter contacted me about a Security Analyst Level 1 position in a SOC. It was two interviews. A technical interview was the first one where it was mostly linux questions and attack questions. I met with 3 team leads and they asked me the questions. I didn't know all of the questions and just told them I didn't know if I didn't know the answer. I also wrote all of the questions down that I didn't know. I always carry a notebook into interviews. The second interview was just so the managers could get a feel for the kind of person I was. I found out I got the job the same day. The job pays $30/hr.
For the longest it was such an uphill battle. There aren't really many entry level security jobs. I feel like the main thing that got me there was just really grinding at my job. My job wanted everybody to have A+ and the Windows 10 cert. I already had the A+ cert and out of the other 13 technicians, 9 months later I'm still the only person to have the A+ and the Windows 10 cert. Having at least the required certs made it easier for them to agree to pay for the security certs. If I didn't have them, they wouldn't said "Well you don't even have your required certs". A lot of my days were 10 hour work days and I do the gym at least 3 days a week after work. I'd always get to work an hour early to study for whatever cert I was going for. I also have a wife. None of the guys at my job have any drive it seems and it just made it easier for me to look good. This year I got MCSA Windows 10, CEH, and GCIH. My first IT job was $14/hr last year and on the 16th I start a security job making $30/hr. It feels good to finally have my work pay off.
To all of the guys trying to get in the field, I'd say be the hardest worker in the room and keep at it. Get whatever security certs you can. Preferably certs that are more well known if possible. The certs got me in the door. Actually knowing the material well enough to pass the technical interview is what landed the job for me.
Thanks to everybody for there contributing words and experiences on here. Sorry for the novel.
February 2016 - July 2016 I worked a couple of desktop support contract jobs.
July 2016 I got hired on at an MSP doing helpdesk. Learned a lot. Over 400 clients and as a level 1 tech I was a domain admin for all of them. I was basically allowed to do anything to the client's environment as long as I knew how to do it.
One day I applied for a position on Craigslist. The ad said you could start off in desktop support and move into a number of other departments, security being one of them. They ended up offering me the job and when I put in my notice at my job, they said they were in the process of trying to get a security role going and if I stayed, I could be that guy. I was able to get them to pay for whatever security certs I wanted and give me a raise. I got the CEH and GCIH. Since GCIH was so expensive, they would only do it if I signed an agreement to stay on for at least 18 months. A few months later I got both certs and they ended up not being able to make the security position. I told them I wouldn't have signed the agreement if I knew that there was a possibility the position wouldn't be made. They let me out of the agreement, said I didn't have to pay it back if I left.
Updated my resume on a all job sites to now show the CEH and GCIH. A recruiter contacted me about a Security Analyst Level 1 position in a SOC. It was two interviews. A technical interview was the first one where it was mostly linux questions and attack questions. I met with 3 team leads and they asked me the questions. I didn't know all of the questions and just told them I didn't know if I didn't know the answer. I also wrote all of the questions down that I didn't know. I always carry a notebook into interviews. The second interview was just so the managers could get a feel for the kind of person I was. I found out I got the job the same day. The job pays $30/hr.
For the longest it was such an uphill battle. There aren't really many entry level security jobs. I feel like the main thing that got me there was just really grinding at my job. My job wanted everybody to have A+ and the Windows 10 cert. I already had the A+ cert and out of the other 13 technicians, 9 months later I'm still the only person to have the A+ and the Windows 10 cert. Having at least the required certs made it easier for them to agree to pay for the security certs. If I didn't have them, they wouldn't said "Well you don't even have your required certs". A lot of my days were 10 hour work days and I do the gym at least 3 days a week after work. I'd always get to work an hour early to study for whatever cert I was going for. I also have a wife. None of the guys at my job have any drive it seems and it just made it easier for me to look good. This year I got MCSA Windows 10, CEH, and GCIH. My first IT job was $14/hr last year and on the 16th I start a security job making $30/hr. It feels good to finally have my work pay off.
To all of the guys trying to get in the field, I'd say be the hardest worker in the room and keep at it. Get whatever security certs you can. Preferably certs that are more well known if possible. The certs got me in the door. Actually knowing the material well enough to pass the technical interview is what landed the job for me.
Thanks to everybody for there contributing words and experiences on here. Sorry for the novel.
Comments
-
NEODREAM
Member Posts: 124 ■■■□□□□□□□
Congrats, great to see that hard work and perseverance paying off. -
jamesleecoleman
Member Posts: 1,899 ■■■■■□□□□□
Good job! I'm glad that the work that you put in paid off!Booya!!
WIP : | CISSP [2018] | CISA [2018] | CAPM [2018] | eCPPT [2018] | CRISC [2019] | TORFL (TRKI) B1 | Learning: | Russian | Farsi |
*****You can fail a test a bunch of times but what matters is that if you fail to give up or not***** -
mikey88
Member Posts: 495 ■■■■■■□□□□
Congrats on the new role. I'm sure it will be beneficial for anyone trying to go the same route as you.Certs: CISSP, CySA+, Security+, Network+ and others | 2019 Goals: Cloud Sec/Scripting/Linux -
TechGromit
Member Posts: 2,156 ■■■■■■■■■□
Congratulation. I wager the GCIH really help land you that job. The CEH helped, but since you can get a self study book and take the exam, it's certainly easier (and cheaper) to obtain than a GIAC cert.fabostrong wrote: »Updated my resume on a all job sites to now show the CEH and GCIH. A recruiter contacted me about a Security Analyst Level 1 position in a SOC.
When you say recruiter, what kind? A staffing agency? Or a company recruiter for full time position with benefits? Where did you "update" your resume? A job board?Still searching for the corner in a round room. -
tmurphy3100
Member Posts: 154 ■■■□□□□□□□
Congrats! I am trying to follow a similar path. Do you feel like getting the GCIH was the key to get into an interview? Also, did you have any programming knowledge?2020 Goals: CCNA R&S, Cysa+, AZ103, Linux+, Pentest+ -
fabostrong
Member Posts: 215 ■■■□□□□□□□
TechGromit wrote: »When you say recruiter, what kind? A staffing agency? Or a company recruiter for full time position with benefits? Where did you "update" your resume? A job board?
A staffing agency. The position is full time with benefits. And yes, job boards. Indeed, Dice, CareerBuilder. -
fabostrong
Member Posts: 215 ■■■□□□□□□□
tmurphy3100 wrote: »Congrats! I am trying to follow a similar path. Do you feel like getting the GCIH was the key to get into an interview? Also, did you have any programming knowledge?
Most definitely. In both interviews, they let it be known that GCIH is 1 of 2-3 certs that they really look for or like. So it definitely got me in the door for the interview. Not sure if the CEH would've been enough to get me the interview or not. I don't have any programming knowledge. -
fabostrong
Member Posts: 215 ■■■□□□□□□□
TechGromit wrote: »Congratulation. I wager the GCIH really help land you that job. The CEH helped, but since you can get a self study book and take the exam, it's certainly easier (and cheaper) to obtain than a GIAC cert.
I agree. -
fabostrong
Member Posts: 215 ■■■□□□□□□□
gespenstern wrote: »Congratz! Quite a pace!
Thanks, man. Trying to stay hungry. -
TechGromit
Member Posts: 2,156 ■■■■■■■■■□
fabostrong wrote: »A staffing agency. The position is full time with benefits. And yes, job boards. Indeed, Dice, CareerBuilder.
So are you working for the staffing agency as a contractor for a client?Still searching for the corner in a round room. -
volfkhat
Member Posts: 1,072 ■■■■■■■■□□
cool!!
So, if i may ask, what is a general description of the day to day things you will be doing in this role?
(i ask because i always see threads of people want to get into "IT security", but i'm not sure they know what it actually means)
:] -
alias454
Member Posts: 648 ■■■■□□□□□□
Good job. Hard work pays off.“I do not seek answers, but rather to understand the question.” -
fabostrong
Member Posts: 215 ■■■□□□□□□□
TechGromit wrote: »So are you working for the staffing agency as a contractor for a client?
No, sir. I'm working directly for the security company as a full-time/permanent employee. -
coreyb80
Member Posts: 647 ■■■■■□□□□□
Congrats OP on the position and keep pushin forward!!WGU BS - Network Operations and Security
Completion Date: May 2021 -
fabostrong
Member Posts: 215 ■■■□□□□□□□
cool!!
So, if i may ask, what is a general description of the day to day things you will be doing in this role?
(i ask because i always see threads of people want to get into "IT security", but i'm not sure they know what it actually means)
:]
This is the job description
Job Summary
The Security Analyst role is responsible for performing accurate and precise real-time analysis and correlation of logs/alerts from a multitude of client devices with a focus on the determination of whether said events constitute security incidents.
Primary Responsibilities
· Monitor global NIDS, Firewall, and log correlation tools for potential threats
· Initiate escalation procedure to counteract potential threats/vulnerabilities
· Provide Incident remediation and prevention documentation
· Document and conform to processes related to security monitoring
· Provide performance metrics as necessary
· Provide customer service that exceeds our customers’ expectations
Required Skills and Experience
· Basic command of Linux systems administration and working with BASH
· Basic understanding of networking including TCP/IP
· Basic experience with network monitoring and packet analysis tools
· Basic understanding of a cloud environment & infrastructure (AWS, Azure, Google Cloud, etc.)
· Basic understanding of HTTP, SSL/TLS, SOAP, and reverse proxies
· Basic experience using an IDS eg, Snort.
· Basic understand the Top 20 Critical Security Controls for Effective Cyber Defense
· Basic understanding of the OWASP Top 10
· Basic knowledge of threat vectors against the Windows or Linux platform
· Basic hands-on experience with network security or equivalent study
· Basic experience with anomaly detection based on security systems
· Strong time management skills with the ability to multitask
· Ability to work a flexible schedule including weekends and evenings, and night shifts
· Detail oriented individuals that work well in a team environment and have a hunger to learn
· Analytical and problem solving skills
· Demonstrable verbal and written communication experience
· Experience with ticketing systems, to include understanding work flow, ticket routing and resolution documentation
· Operations Experience (SOC Operations an advantage)
· Experience working in a customer service oriented organization
· Basic experience using Microsoft Word, Excel and PowerPoint
Desired Skills and Experience
· Basic hands on experience working with Windows infrastructure
· Basic possession of a diverse log message and windows event vocabulary
· Basic experience with scripting in Python, Perl, Bash, PHP, JavaScript
· Basic working knowledge of SQL
· Basic hands on experience configuring Windows or Linux system logging
· Basic understanding of Windows or Linux logging / auditing capabilities
· Basic experience with configuration and troubleshooting of network switches, routers, and firewalls
· Basic understanding of routing
· Basic understanding of Security Information & Event Management (SIEM) concepts and functionality
· Basic experience with vulnerability scanning and reconnaissance methods
· Basic understanding of the 6 phases of Incident Handling (Preparation, Identification, Containment, Mitigation, Remediation and Lessons Learned)
· At least one security certification such as SANS, EC-Council, or ISC2
Education
· Bachelor’s degree in Computer Science, Computer Engineering, Network Security, Information Security, Information Technology or equivalent work experience. 1- 3 years of work experience in the field.
