Six Skills You Need to Succeed in Cybersecurity

Finally, there’s these:

  • Convention SuperherosExamine security from a holistic view, including threat modeling, specifications, implementation, testing, and vulnerability assessment
  • Understand security issues associated with operating systems, networking, and virtualization software
  • Understand Web application security concepts and practices
  • Understand the architecture of systems and network including identifying the security controls in place and how they are used
  • Understand database weaknesses and security best practices
  • Advanced understanding of general information security concepts and principles, system architectures and development
  • Expert knowledge of software development security principles, concepts, and best practices
  • Ability to write tools to automate certain security tasks
  • Ability to do Systems and Network hardening
  • Organize and coordinate technical Vulnerability Assessments including systems and network vulnerability assessments, penetration testing, web application assessments, social engineering assessments, physical security assessments, wireless security assessments and implementing secure infrastructure solutions
  • Recommend and set the technical direction for managing security incidents
  • Maintain the integrity of process and approach, as well as controls, for the whole incident management process including the ability to coordinate and manage major/highly sensitive investigations with potential for business wide impact/reputational damage
  • Be able to understand and forensically show how attacks from the Internet are done

Go back to the original post.

Comments

  1. BY bob says:

    Not a comment but a question. Where can I have a good training on this field?

  2. BY John Zavgren says:

    Excellent article. I agree with the author’s attitude about certification. I’ve taught courses (cryptography, Internet security, defensive coding practices, etc.) that have enabled my students to pass the CISSP examination. But, I’ve never seriously considered taking it, because it costs too much and the certification isn’t sufficient for professional competence.

    I’ve seen a lot of job postings over the years that emphasize certification. I’m not sure that the potential employers really understand anything about security. One telecommunications company, who’s recruiter (a friend of mine) contacted me, merely wanted to fill a position for the lowest possible salary. The recruiter leveled with me: the executives of the company merely wanted someone to point to when the issue of security came up. “Look guys, we’re doing the best job with the best people”. I see all too much of this.

  3. BY Thomas W Thompson says:

    I have 25 + years in IT. I hve been labelized as a PM generalist. I need help to take the next step in Cybersecurity. PLEASE HELP ME.

  4. BY Latrese says:

    I would like to become marketable for employment in the wireless security sector. What type of education/certifications should I persue. I have Cisco CCNA and experience in LAN/WLAN Networking and Mobile Platforms

Post a Comment

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>