How to start career in Information Security

RahulDambreRahulDambre Member Posts: 1 ■□□□□□□□□□
I have just completed B.E I.T , and i have lot of interest in hacking and information security..

When i searched job searching sites i have found that all companies that required security professional recommands minimum 5-6 years of experiance ....

So how to start career in InfoSec , while i have zero experiance.....

& Which is certification i should start with.....?



  • JDMurrayJDMurray MSIT InfoSec, CISSP, SSCP, GSEC, EnCE, C|EH, CySA+, PenTest+, CASP+, Security+ Surf City, USAAdmin Posts: 12,075 Admin
    The first InfoSec start typically recommended is the CompTIA Security+. Have a look in our Security+ forum for information on it.
  • kranthivenkatkranthivenkat Member Posts: 3 ■□□□□□□□□□
    Hi rahul,

    I see from your post that you are interested to start your career in information security,let me share you couple of facts in this career

    There are two types of InfoSec Employees.
    a.)External (well Known as Security Consultants) b.)Internal (Mostly called as IT security auditors)

    1.InfoSec internal Team in many organizations is small (<20 members)
    2.The first level(Analysts,Executives) comprises of employees who has 0.1 to 3 yrs of exp.
    3.The second level(Sr.IT Security Analysts & Asst.Managers) comprises of emp between 3 to 6 yrs of Exp.
    So the list goes on to Deputy Managers,Group Managers, chief Managers,CISO....

    The roles and responsibilities varies depending on their levels

    If you are passionate about InfoSec,i would recommend you to get theoritical and little practical knowledge in the following areas.

    1.Vulnerability Assessments/Penetration Testing.
    2.Knowledge on ISO 27001 Standards & ISMS audits
    3.Risk Assessments - Risk,Vulnerability & Threats
    4.Information Systems audit.
    5.Physical and Environmental Security.

    As posted in the previous thread,CompTIA Security+ is an excellent cert to start with,but then you have to genuinely study and get certified(I stress on - "Dont study from ****")

    There are many websites that throw more focus on Security.Visit those websites.

    Wish you all the best,

    Venkata Vinod Kumar.G
    Sr.Executive - InfoSec
  • lacto17lacto17 Member Posts: 18 ■□□□□□□□□□
    You can go ahead with Security+ Certificaiton. It will give you an outline about Information Security.For S+ you can start with the Official Study Material,then go ahead with CBT's.

    You can also start you career as a Network Security Specialist.
    Thanks & Regards
  • GAngelGAngel Member Posts: 708
    I hope you have a drinking habit because you're going to need one icon_cool.gif
Sign In or Register to comment.