This document discusses the differences between working in information security on the "light side" versus the "dark side". The light side involves legitimate security jobs like penetration testing, malware analysis, and security auditing. The dark side refers to illegal hacking activities like creating ransomware, spamming, or conducting large DDoS attacks. While dark side activities can be financially lucrative in the short term, they often involve serious legal risks since computer crime laws are strongly enforced. The document encourages pursuing an career in the growing field of information security through legal and ethical means.