What kind of entry level job can I get with security + certified?

keeranbri · June 2012

Hello Everyone,
I currently am doing level 1 and also a little bit of level 2 help desk for about 8 months now.
I have no certifications but have a Bachelors degree in technical management
However, I would like some opinions on what kind of job can I get into if I take the security + exam with my experience and education.
I am looking into getting into the security field, such as security analyst but don't know what kind of entry
level jobs are out there for security

doobies · June 2012

without knowing your locale i really couldn't say. I know in my area.. a security + will get you the exact same job you already have. Heck its required for helpdesk jobs.. possibly a Sys admin job... security tho? There are a few socs that have security + requirements... few and far between but they do exist and pay .. well.. you will get experience!! which is the important thing.

so when you say a security analyst.. what do you mean?

and you want to ask yourself this question seriously. What do you have a passion for?

security is a big field... really big field. And there are really no entry level security jobs. Thats backwards... to have an entry level person running security... think about that. I would suggest moving from help desk to sys admin or net admin.

You can then make a decision on which route you want to go as they bassically touch every aspect of security... lightly.

Do you want to patch?
Do you want to write policy?
Do you want to enforce policy?
Do you want to monitor networks for intrustion?
Do you want to pentest on networks?
do you want to conduct vulneraiblity assesments on networks for holes?
Do you want to handle intrusions and incidents?
Do you want to peform forensics on pwned boxes and malware?
Do you want to get people fired for fraud waste and abuse?
Do you want to configure IDS/ IPS/ Systems and firewalls aka engineer?
Do you want to be the focal point of communicaton for all things security and speak to other people to trade info and keep your team up to date (intel)
Do you want to track down hackers... aka cyber terrorist for law enforcment?
Do you want to track down hackers for .. military?
Do you want to hack on behalf of a country?
Do you want to write code for exploits?
Do you want to certify systems?
Do you want to audit Information systems?
Do you want to audit information security policies?
Do you want to audit banking systems... federal?
Do you want to write reports? Situational awarness reports?
Do you want to research adversarial hackers? Companies that sell the same product as yours that engage in corporate espionage?
Do you want to work in disaster recovery (from cyber incidents)?
Do you want to write programs to deal with codes for exploits?
Do you want to write IDS filters for IDS systems?

i mean.. seriously.. i could go on and on and on.... so what you really want to ask yourself is what you have a passion for.. try to get a Sys admin job.. and try to fit that passion in you day to day activities... if its not already a part of it... get your time in.. get your certs.. and branch out to that passion.

...

tldr: sys admin... sec plus means very little in most shops. Just means you know the basics of security. You can find internships... and a few... very very few "security" jobs that require only a security plus training session. Those are generally policy enforcment unless your lucky enough to get into a rotational intership/job that really has an investment in building your skills.

Raisin · June 2012

You should try to move up into a systems admin or network technician position. Most security positions tend to be a management/senior administrator role. You need some experience first before you can start telling other admins how they will secure their systems.

Getting the security+ is still a good idea for advancing your career, but it's more for general security knowledge rather than specializing in security.

docrice · June 2012

Security+ is essentially the high school diploma of security certifications. And in many places, certifications by themselves without a decent amount of sysadmin / netadmin experience don't hold as much water for technical infosec positions. That aspect has been discussed to death in these forums and I'm sure you'll find those threads if you do a search.

keeranbri · June 2012

Then how can I get into a system admin position? Or is it easy for me to get into a system admin job since I do help desk now and have a bachelors.
What do they usually look for , certificates, ect. to get a system admin job?
Do people from help desk usually just go into system admin job after then thats how they find out what niche they have or passion.

doobies · June 2012

keeranbri wrote: »

Then how can I get into a system admin position? Or is it easy for me to get into a system admin job since I do help desk now and have a bachelors.
What do they usually look for , certificates, ect. to get a system admin job?
Do people from help desk usually just go into system admin job after then thats how they find out what niche they have or passion.

itshould be an easier transition.. granted they let you touch some things.. if your unlocking accounts and stuff.. comfy with active directory.. go aheead and get your mcp... push to do some exchange administration. Clearing out server logs... connecting computers to the domain.. unlocking/creating pc accounts. etc.. from there the transition shouldn't be to bad. Or sneak in by imaging boxes and adding them to the network.. gaining an understanding of networking, ip reservations..etc.. that eventually will get you into a situation where the dns is funky.. u understand the relationship between dns and dhcp and your boxes and servers.. the really won't have too much of a reason not to hire you.

move to your mcsa/se or if your new school mcts itp etc...

example of a admin job in texas.. note the incident response, patch management and vulnerability analysis/mitigation. Thats info security duties...

5 years in this position.. you can take your cissp... and 3 your ceh.. i think.. and after that you can figure out where you wanna go...

In a Wintel server environment, performs installation, customization and maintenance of the operating

system and system software products in support of business processing requirements.
* Performs system software installations, system software maintenance and product upgrades.
* Evaluate and integrate new operating system versions, drivers and hardware.
* Tests software updates and patches.
* Monitors and tunes the system to achieve optimum performance levels in standalone and multi-tiered environments.
* Conducts system analysis, configuration management and develops improvements for system software performance, availability and reliability.
* Perform Incident resolution, Problem Determination and Root Cause Analysis in accordance with Service Level Agreements.
* Designs, develops, recommends and implements new or revised systemsoftware, utilities and automated processes as necessary.
* Provides in-depth diagnosis for operating systems software/hardware failures and develops solutions. * Ensures server data integrity by evaluating, implementing and managing appropriate software and hardware solutions.
* Prescribes system backup / disaster recovery procedures and directs recovery operations in the event of destruction of all or part of the operating system or other system components. Implements appropriate levels of system security.
* Will possess an understanding of networking technology (DNS, WINS, and DHCP).
* Is familiar and experienced with server hardware, firmware, BIOS, RAID, server backups, and server security.
* Provides technical expertise for system Transitions, Migrations and Consolidations.
* Provides technical assistance to IT support staff, including but not limited to, DBAs, Network Engineers, Application Developers, Middleware Engineers, otherSystem Administrators, Project Managers, Change Managers and Business Development staff.
* The Sr. Advisor level is the recognized subject matter expert in the design, architecture and deployment of new Wintel systems in standalone and multi-tiered environments.
* Leads project management activities for new system requirements, RFP responses, data center migrations and new technology exploitation.
* Transfers knowledge and provides leadership support to the Advisors in the implementation of new hardware, operating systems and new software technology.
* The Sr. Advisor is expected to keep abreast of new technology and make recommendations as to how best to exploit the new technology for the benefit of our customers.
* Designs technologically advanced solutions to meet customer's mission, objectives and requirements. * Proactively assesses exposure areas and takes steps to reduce vulnerabilities. Provides advice, training, and 24x7 technical support to customers, users and programmers.
* Provides technical leadership on complex projects involving a broad range of expertise and disciplines, often performing the role of Infrastructure Architect.
* Great customer facing / presentation skills to all levels of management. Project management experience supporting data centers migrations and major software upgrades. Outstanding written and verbal communication skills. Significant project management experience and leadership skills.

Raisin · June 2012

keeranbri wrote: »

Then how can I get into a system admin position? Or is it easy for me to get into a system admin job since I do help desk now and have a bachelors.
What do they usually look for , certificates, ect. to get a system admin job?
Do people from help desk usually just go into system admin job after then thats how they find out what niche they have or passion.

With your work experience and education you should have a decent shot at a system admin position. A few certifications wouldn't hurt, but if you get an interview they'll focus most of their questions towards your help desk experience.

What kind of entry level job can I get with security + certified?

Comments