markulous wrote: » What exactly do you want to do? Infosec is a broad field. If you're going to be doing networking security, then I'd say you'd probably want CCNP-level knowledge. If you're doing more malware remediation and systems security, then CCNA-level would likely suffice. Either way, you have to understand what you're protecting.
scaredoftests wrote: » In a way, aren't you dealing with SOME security on your servers? Monitoring to see if intruders are trying to get in, updates and such?
jerseytech wrote: » May I ask your advice? I'm currently a Systems Administrator working mainly on Windows Servers. I do love it, but I'd also like to do some security. What security-field focus would be good for a Windows Sysadmin?
markulous wrote: » I wouldn't base it off of that. What do you WANT to do?
cyberguypr wrote: » Well there's your answer. You need to narrow down what that next step is. Learning a bunch of networking to then realize you want a GRC or some other non-technical role would be wasting time. You REALLY need to put some effort getting to know what's out there and what you want to pursue. Time and money are usually limited, so you need to make an informed decision about how you will invest both. Go out there, check job titles, see what each one does and what skills are required. Possible starting points: Blue vs. Red Team careers: https://tisiphone.net/2015/11/08/starting-an-infosec-career-the-megamix-chapters-4-5/ SANS Career Roadmap: https://www.sans.org/media/security-training/roadmap.pdfhttps://www.securitywizardry.com/index.php/home/cnd-ltd/recruitment/security-roles-defined.htmlhttps://zeltser.com/information-security-job-titles-popularity/
cyberguypr wrote: » I work for a somewhat big well-known company and the guys who administer our AirWatch are mobility, not security.
