Interviewing for a position with stale experience
jermdawg
Member Posts: 3 ■□□□□□□□□□
Hey all,
I may be interviewing for a position that relies on a skillset (infosec) that I've really lapsed in for the past 5 years since working at my current position (QA). I have a background in both but especially since I started my current position (since 2016), I've been heavily if not all focused on QA. The context of this is that I'm working on a team that is technically in the infosec space but I'm more on the development side and pretty strictly QA which has had very little to do with actual infosec practices. I haven't kept current with certs that I obtained years ago (when I was more involved in infosec) and current 'applied' experience just isn't there; part of me sort of lost 'interest' in the infosec arena over the years as I've only really been doing QA but I feel it would be a good thing to get back into it.
Any suggestions on how to approach the interview/discussion with all this in mind? I'm not exactly sure how to respond/proceed when they realize that I've had very little actual involvement in the infosec space for the past 5 years (which is a pretty long time).
Comments
-
JDMurray Admin Posts: 13,101 AdminYour situation is very similar to programmers who move into Software Quality Assurance (SQA) positions and then their resume gets "stale" for hands-on programming work experience. Because you have no recent InfoSec experience to flaunt, you must emphasize skills and experience that you do have that a hiring manger might find useful to an InfoSec team. Such skills may include writing documentation, customer service skills (for running incident meetings), project management, maintaining Blue Team security devices (SIEM), and understanding basic coding practices for reading/writing IPS rules and SIEM content. If you have a diverse set of these skills, and are going for a lower-level salary position, the hiring manager may see you as a bargain in getting the skills of several employees in one. Also, apply for as many InfoSec job openings as you can. Even if you need to take a non-InfoSec position and move into an InfoSec team later, you just need to get your foot into the door to start earning that experience again anyway that you can.
-
jermdawg Member Posts: 3 ■□□□□□□□□□Thanks! Great advice. I'll have to try to conjure something up I'm kind of in a place where I'm not highly motivated and lack confidence overall, especially as it pertains to interviewing.
As far as salary, I'm thinking it may end up very well being a salary cut which I'm not sure if it would be wise to weather at the moment. -
yoba222 Member Posts: 1,237 ■■■■■■■■□□Maybe I misread, but if you're not all that interested in infosec, are you sure it's a good idea to be applying for an infosec position?A+, Network+, CCNA, LFCS,
Security+, eJPT, CySA+, PenTest+,
Cisco CyberOps, GCIH, VHL,
In progress: OSCP -
jermdawg Member Posts: 3 ■□□□□□□□□□yoba222 said:Maybe I misread, but if you're not all that interested in infosec, are you sure it's a good idea to be applying for an infosec position?