Cybersecurity career options & Getting started

•Download as PPTX, PDF•

2 likes•134 views

This is a presentation I have delivered to under graduate students who are interested in cyber security and want to know the strategy to get into cyber security by preparing themselves while studying their under graduation.

Technology

Cybersecurity Career
Options & Getting Started
Balaji Rajasekaran
Cyber Security Solutions Architect

Personal
Personal
About me
 12+ years of experience in IT.
 Worked in Zoho, Netsurion, Trustwave and BT
 Experience in following areas of Cybersecurity
 Security Operations
 Threat hunting
 Product/Solution Designing & Implementing
 Consultant/Presales & Support
 Vulnerability Assessment
 Risk Analysis

Personal
Personal
What’s ahead?
 Why cybersecurity?
 What’s missing?
 CyberSec Roles
 Breaking down the roles
 Getting started
 Preparing yourself
 Further reading

Personal
Personal
Why Cybersecurity?
Source: Cybersecurityventures.com

Personal
Personal
Why Cybersecurity? (contd.)
Source: Cybersecurityventures.com

Personal
Personal
What’s missing?
 Skills gap - Less skilled people for more jobs
 Retaining people is hard
 Less CyberSec specific curriculum
 Less awareness

Personal
Personal
CyberSec Roles
Security
Analyst
Penetration
Tester
Security
Architect
Forensics
Analyst
Security
Auditor
CISO

Personal
Personal
CyberSec Roles – Security Analyst
 Incident analysis
 Threat hunting
 Vulnerability Analysis
 Compliance reporting
 Incident response

Personal
Personal
CyberSec Roles – Penetration Tester
 White hat hacking
 Finding gaps
 Break into network
 Analyze security measures and report
 Can work independently - Bug Bounty $$$$

Personal
Personal
CyberSec Roles – Penetration Tester
Social Engineering

Personal
Personal
CyberSec Roles – Security Architect
 Designing security solutions and framework
 Identify new security requirements
 Tune existing security controls
 Closing the gaps

Personal
Personal
CyberSec Roles – Forensics Analyst
 Recover and examine evidence
 Prepare reports based on evidence
 Work with law enforcement
 Maintain chain of custody

Personal
Personal
CyberSec Roles – Security Auditor
 Ensuring organization are adhering rules.
 Assess the security risks and report it.
 Recommends standards and practices.
 Work with top management for remediation measures.

Personal
Personal
CyberSec Roles – CISO
 Top management role in cyber security.
 Heads all department in security and decision maker.
 Identifies security objectives and metrics.
 Managing Incident Response plan.

Personal
Personal
Getting started
 Strong Basics
 Networking, OS, Cryptography
 Decide between security analyst/ penetration tester.
Security
Analyst
Penetration
Tester
• Big data analysis
• SIEM - Splunk, Qradar, ArcSight
• Scripting (Python, JavaScript, SQL)
• Know the tools

Personal
Personal
Getting started (contd.)
 Free resources
 TryHackMe
 Hackthebox
 Cyberdefenders
 Cybrary
 US Department of Homeland Security
 Open Security Training
 Heimdal Security
 Sans Cyber Aces Online
 Paid resources
 Udemy
 Future Learn
 Coursera
 Pluralsight

Personal
Personal
Preparing yourself
 Make a plan.
 Strong Basics.
 Set up a lab and start experimenting.
 Effective use of LinkedIn, Twitter, Blog.
 Start planning a cyber sec final year project.
 Stay updated.

Personal
Personal
One more thing
Password hygiene
 Stop using one password for multiple accounts.
 Start using a password manager. (Bitwarden, Keepass)
 Enable 2FA wherever available.
 Subscribe to data breach notifications from https://haveibeenpwned.com

Personal
Personal
Further reading
 https://securityintelligence.com
 https://thehackernews.com
 https://security.stackexchange.com
 https://osintframework.com
 https://github.com/onlurking/awesome-infosec
 https://github.com/showcases/security

What's hot

As cyber attacks increase, so does the demand for information security professionals who possess true network penetration testing, Web Application Security and ethical hacking skills. There are several ethical hacking courses that claim to teach these skills, but few actually do. EC Council's Certified Ethical Hacker (CEH V8) course truly prepares you to conduct successful penetration testing and ethical hacking projects.

Ethical Hacking

Mazenetsolution

Security by Collaboration: Rethinking Red Teams versus Blue Teams

AlienVault

Application Threat Modeling In Risk Management

Mel Drews

Threat Modeling workshop by Robert Hurlbut

DevSecCon

Assess all the things

Jerod Brennen

Ntxissacsc5 purple 3-cyber insurance essentials-shawn_tuma.pptx

North Texas Chapter of the ISSA

Vulnerability Assessments, Penetration Tests and Red Teaming – Do you know what these tactics are all about? In this session, we will present our understanding of these practices in terms of when to apply them and what to expect. Nowadays, organizations run on top of hundreds, if not thousands, of Information Technology assets with some of them on premise and others cloud based. Having control over all of this is a challenging task. Based on our extensive experience with securing our customers, I will show what real findings and attack trends look like while hopefully, shedding some light on how to be prepared to resist current attacks.

Security Consulting Services - Which Is The Best Option For Me? - Diego Sor, ...

Core Security

Once we get beyond the immediate patchwork of solutions and accept that these attacks will continue, we need to think about how to best bolster response. Security orchestration allows for automation and improved capabilities to navigate the full scope of security operations and incident response activities from the initial alert through to remediation. Simply put, context, automation and analyst enablement ensure that the disease is cured, not just the symptoms. Visit - https://siemplify.co

Petya Ransomware

Siemplify

Threat hunting 101 by Sandeep Singh

OWASP Delhi

With recent attacks on hospital data catching headlines, we wanted to provide some best practices in this webinar to keep your systems safe and sound! We will be co-presenting this webinar with our partners at Intellisuite IT Solutions. What you will learn: How-to use an Intranet to educate staff on IT security How-to Engage staff in pro-active thinking about IT and patient privacy with a social Intranet tools. How a proactive IT plan and an Intranet can help keep an organization safe from Ransomware Attacks How-to publish and ensure readership on HITECH, HIPPA and other IT policies across the entire hospital using a web based Policy Manager How an Intranet can alert staff of an attack and train staff on ways to prevent attacks How to leverage layered security to prevent ransomware attack Important elements of a layer security approach What to do if ransomware attack evades the initial layer Risks of vulnerable or unprotected system Organization’s recourse for getting back to production are restoring from backup or paying the ransom

HOW TO PREPARE FOR AND RESPOND TO A RANDSOMWARE ATTACK [Webinar]

Stanton Viaduc

Cybersecurity Fundamentals for Legal Professionals (and every other business)

Shawn Tuma

Threat Modeling is a great way to analyze security early in software development by structuring possible attacks, bad actors and countermeasures over a broad view of the targeted system. This talk will describe basic components of a threat model and how to use them effectively. Threat Intelligence is where you gather knowledge about the environment and business assets to determine what are the actual threats. But how do you reconcile that with the current architecture in a useful manner? The toolkit presented in this talk will enable you to systematically structure related information using graphical notations such as flow diagram and attack tree. In case you are wondering where to start in your organization, a quick lightweight risk rating methodology will also be proposed. And in the end, you’ll see how we can all tie those together and get threat modeling to a point where it’s an efficient application security activity for communication. Doing this will prevent security reviews from missing important things even when chaos prevails during the realization of a project. Modeling concepts will be demonstrated with an actual IoT device used as example. https://www.owasp.org/index.php/Quebec_City https://twitter.com/jonathanmarcil

OWASP Québec: Threat Modeling Toolkit - Jonathan Marcil

Jonathan Marcil

Anton Chuvakin on What is NOT Working in Security 2004: Focus on ‘what works’ is good, but sometimes negative motivation works as well! Let’s take a (fairly subjective) look at what doesn’t work for a change. Things change, technologies (and even processes) improve, that is why the title has a date. Also, please take into account that the information provided is subjective by nature and represents my outlook on things, mostly collected from working in (and watching!) the security industry.

Anton Chuvakin on What is NOT Working in Security 2004

Anton Chuvakin

Cybersecurity Fundamentals by Shaw E. Tuma

Klemchuk LLP

Ransomware Detection: Don’t Pay Up. Backup.

marketingunitrends

Threat Hunting

Splunk

This is the presentation from Null/OWASP/g4h November Bangalore MeetUp by Shivendra Saxena. technology.inmobi.com/events/null-owasp-g4h-november-meetup This topic would deal with the introduction to threat modeling. We'll discuss about the process of brainstorming about the issues which might appear when the product gets built. Will discuss about the STRIDE model and about the importance of the eraky detection of the security issues.

Introduction to Threat Modeling

InMobi Technology

Threat Hunting 102: Beyond the Basics

Cybereason

Ensuring Full Proof Security At Xero

Craig Walker

Ransomware is the universal threat. No matter an organization's data center location, or its size, it can be devastated by a ransomware attack. While most organizations focus on the periphery, they also need to be prepared for a breach, something that ransomware is particularly adept. In case of a breach, an advanced backup and disaster recovery solution can ensure safe and timely recovery of data without paying ransom. In this webinar join experts from Storage Switzerland and Micro Focus as they discuss the impact of ransomware and the core features of a backup solution that can mitigate the associated risks.

Webinar: Backup vs. Ransomware - 5 Requirements for Backup Success

Storage Switzerland

What's hot (20)

Ethical Hacking

Security by Collaboration: Rethinking Red Teams versus Blue Teams

Application Threat Modeling In Risk Management

Threat Modeling workshop by Robert Hurlbut

Assess all the things

Ntxissacsc5 purple 3-cyber insurance essentials-shawn_tuma.pptx

Security Consulting Services - Which Is The Best Option For Me? - Diego Sor, ...

Petya Ransomware

Threat hunting 101 by Sandeep Singh

HOW TO PREPARE FOR AND RESPOND TO A RANDSOMWARE ATTACK [Webinar]

Cybersecurity Fundamentals for Legal Professionals (and every other business)

OWASP Québec: Threat Modeling Toolkit - Jonathan Marcil

Anton Chuvakin on What is NOT Working in Security 2004

Cybersecurity Fundamentals by Shaw E. Tuma

Ransomware Detection: Don’t Pay Up. Backup.

Threat Hunting

Introduction to Threat Modeling

Threat Hunting 102: Beyond the Basics

Ensuring Full Proof Security At Xero

Webinar: Backup vs. Ransomware - 5 Requirements for Backup Success

Similar to Cybersecurity career options & Getting started

2021 BSides Tampa Cyber Security Careers

Scott Stanton

How To Become An IT Security Risk Analyst

Niloufer Tamboly CISSP, CPA, CIA, CISA, CFE

If you want admission in one of the best M.Sc. (IT) Cyber Security Programs in Ahmedabad, enroll in SKIPS University’s M.Sc. (IT) program. Benefit from more than 500 hours of intense industry experience, over 600 hours of proactive learning sessions, job support, complimentary industry certification, options for networking, and comprehensive instruction in tools and tech relevant to cyber security.

Cyber Security -Career and Job Opportunities after Msc.it

SKIPS University

Tampa BSides - The No BS SOC (slides from April 6, 2024 talk)

Mark Simos

wannabe Cyberpunk; “I don’t know what I’m supposed to do.”

Moshiul Islam, CISSP, CISA, CFE

knowthyself : Internal IT Security in SA

SensePost

With companies getting hacked and private deals becoming exposed, the call of a Cybersecurity personnel is required today. Blockchain is indeed the future of work that would be taking place in the future, with Web 3 integrating blockchain system where Information can be kept secret and stored, Cyber security personnel also helps in keeping and safe guarding files and avoid exposing them to dangerous threats by hackers. To find more about what Cyber security means, I would love you to read this post and get a glimpse of what I'm talking about. And if you are a business owner seeing this, I strongly advice to read that post and implement it in your business.

How to Become a Cyber Security Specialist.doc

EmmanuelDaniel41

Cyber Security for Non-Technical Executives (SC GMIS) Columbia, SC

AT-NET Services, Inc. - Charleston Division

Software security is best built in. This presentation introduces three essential things to help you design more secure software. In order to have a secure foundation, you can create and select security requirements for your applications using evil user stories and utilizing existing material for example from OWASP. Another useful skill is threat modeling which helps you to assess security already in the design phase. Threat modeling helps you deliver better software, prioritize your preventive security measures, and focus penetration testing to the most risky parts of the system. The presentation covers various methods, such as the STRIDE model, for finding security and privacy threats. You will also learn what kind of security related testing you can do without having any infosec background.

What Every Developer And Tester Should Know About Software Security

Anne Oikarinen

A SOC Analyst is a cybersecurity specialist that works in a company’s Security Operation Center (SOC) and is responsible for threat identification and analysis on the front lines. A SOC Analyst proactively identifies threats and vulnerabilities, investigates attacks on systems, and reports the findings to the senior members of the team. On average, a SOC Analyst’s salary in the United States is $65,272.

How to become a SOC Analyst and build a dream career with it.pptx

Infosectrain3

How to become a SOC Analyst and build a dream career with it.pptx

infosec train

Cybersecurity, also known as information technology security or computer security, is the practice of protecting computer systems, networks, devices, and data from unauthorized access, cyberattacks, theft, or damage. It encompasses a range of technologies, processes, and practices designed to safeguard digital assets and ensure confidentiality, integrity, and availability : https://www.bytec0de.com/cybersecurity/

What Are The Job Roles In Cyber Security.pdf

Bytecode Security

Cyber Defence Intelligence (CDI)

FloydCarrasquillo

ION-E Defense In Depth Presentation for The Institiute of Internal Auditors

mdagrossa

Threat Modeling Web Applications

Nadia BENCHIKHA

Micro Focus SRG Solution Mapping to the New BDDK Regulations for Turkish Fina...

Emrah Alpa, CISSP CEH CCSK

There is an old management adage that says “You can’t manage what you don’t measure.” The Building Security in Maturity Model (BSIMM) applies scientific principles to the field of software security to effectively measure security activities across industries and business units. The BSIMM enables experts like you to discover what exists in the application security universe, how those things work today, how they worked in the past and how they are likely to work in the future.

BSIMM: Bringing Science to Software Security

Cigital

Preparing for a New Career in Cyber - Pulsedive

Grace Chi

Penetration Testing for Cybersecurity Professionals

211 Check

The Businees Benefits of Threat Intelligence Take 30 minutes of your time to hear Cyber Squared Inc. CEO Adam Vincent review the need for businesses to evaluate the cost of a sophisticated threat intelligence program. Learn more about the ROI calculator that evaluates cost/benefits of threat intelligence investments and offers quantifiable financial benefits and use-cases to demonstrate the overall costs associated with data breaches, and how using threat intelligence can decrease those costs and make existing staff more efficient. Watch the full webinar here: https://attendee.gotowebinar.com/recording/7218699913172089858

The Business Benefits of Threat Intelligence Webinar

ThreatConnect

Similar to Cybersecurity career options & Getting started (20)

2021 BSides Tampa Cyber Security Careers

How To Become An IT Security Risk Analyst

Cyber Security -Career and Job Opportunities after Msc.it

Tampa BSides - The No BS SOC (slides from April 6, 2024 talk)

wannabe Cyberpunk; “I don’t know what I’m supposed to do.”

knowthyself : Internal IT Security in SA

How to Become a Cyber Security Specialist.doc

Cyber Security for Non-Technical Executives (SC GMIS) Columbia, SC

What Every Developer And Tester Should Know About Software Security

How to become a SOC Analyst and build a dream career with it.pptx

What Are The Job Roles In Cyber Security.pdf

Cyber Defence Intelligence (CDI)

ION-E Defense In Depth Presentation for The Institiute of Internal Auditors

Threat Modeling Web Applications

Micro Focus SRG Solution Mapping to the New BDDK Regulations for Turkish Fina...

BSIMM: Bringing Science to Software Security

Preparing for a New Career in Cyber - Pulsedive

Penetration Testing for Cybersecurity Professionals

The Business Benefits of Threat Intelligence Webinar

Recently uploaded

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

MINDCTI Revenue Release Quarter One 2024

MIND CTI

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

The action of the next cyber saga takes place in the mystical lands of the Asia-Pacific region, where the main characters began their digital activities in the middle of 2021 and qualitatively strengthened it in 2022. Corporate espionage, document theft, audio recordings, and data leaks from messaging platforms were all a matter of one day for Dark Pink. Their geographical focus may have started in the Asia-Pacific region, but their ambitions knew no bounds, targeting a European government ministry in a bold move to expand their portfolio. Their victim profile was as diverse as a UN meeting, targeting military organizations, government agencies, and even a religious organization. Because discrimination is not a fashionable agenda. In the world of cybercrime, they serve as a reminder that sometimes the most serious threats come in the most unassuming packages with a pink bow.

Cyberprint. Dark Pink Apt Group [EN].pdf

Overkill Security

Following the popularity of “Cloud Revolution: Exploring the New Wave of Serverless Spatial Data,” we’re thrilled to announce this much-anticipated encore webinar. In this sequel, we’ll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you’re building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

MS Copilot expands with MS Graph connectors

Nanddeep Nachan

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Zilliz

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

ICT role in 21st century education and its challenges

rafiqahmad00786416

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

FWD Group - Insurer Innovation Award 2024

The Digital Insurer

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

The microservices honeymoon is over. When starting a new project or revamping a legacy monolith, teams started looking for alternatives to microservices. The Modular Monolith, or 'Modulith', is an architecture that reaps the benefits of (vertical) functional decoupling without the high costs associated with separate deployments. This talk will delve into the advantages and challenges of this progressive architecture, beginning with exploring the concept of a 'module', its internal structure, public API, and inter-module communication patterns. Supported by spring-modulith, the talk provides practical guidance on addressing the main challenges of a Modultith Architecture: finding and guarding module boundaries, data decoupling, and integration module-testing. You should not miss this talk if you are a software architect or tech lead seeking practical, scalable solutions. About the author With two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Victor Rentea

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

Keynote 2: APIs in 2030: The Risk of Technological Sleepwalk Paolo Malinverno, Growth Advisor - The Business of Technology Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...

apidays

Recently uploaded (20)

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

MINDCTI Revenue Release Quarter One 2024

How to Troubleshoot Apps for the Modern Connected Worker

CNIC Information System with Pakdata Cf In Pakistan

Cyberprint. Dark Pink Apt Group [EN].pdf

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

presentation ICT roal in 21st century education

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

MS Copilot expands with MS Graph connectors

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

ICT role in 21st century education and its challenges

Exploring the Future Potential of AI-Enabled Smartphone Processors

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

FWD Group - Insurer Innovation Award 2024

Strategies for Landing an Oracle DBA Job as a Fresher

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...

Cybersecurity career options & Getting started

1. Cybersecurity Career Options & Getting Started Balaji Rajasekaran Cyber Security Solutions Architect

2. Personal Personal About me  12+ years of experience in IT.  Worked in Zoho, Netsurion, Trustwave and BT  Experience in following areas of Cybersecurity  Security Operations  Threat hunting  Product/Solution Designing & Implementing  Consultant/Presales & Support  Vulnerability Assessment  Risk Analysis

3. Personal Personal What’s ahead?  Why cybersecurity?  What’s missing?  CyberSec Roles  Breaking down the roles  Getting started  Preparing yourself  Further reading

4. Personal Personal Why Cybersecurity? Source: Cybersecurityventures.com

5. Personal Personal Why Cybersecurity? (contd.) Source: Cybersecurityventures.com

6. Personal Personal What’s missing?  Skills gap - Less skilled people for more jobs  Retaining people is hard  Less CyberSec specific curriculum  Less awareness

7. Personal Personal CyberSec Roles Security Analyst Penetration Tester Security Architect Forensics Analyst Security Auditor CISO

8. Personal Personal CyberSec Roles – Security Analyst  Incident analysis  Threat hunting  Vulnerability Analysis  Compliance reporting  Incident response

9. Personal Personal CyberSec Roles – Penetration Tester  White hat hacking  Finding gaps  Break into network  Analyze security measures and report  Can work independently - Bug Bounty $$$$

10. Personal Personal CyberSec Roles – Penetration Tester Social Engineering

11. Personal Personal CyberSec Roles – Security Architect  Designing security solutions and framework  Identify new security requirements  Tune existing security controls  Closing the gaps

12. Personal Personal CyberSec Roles – Forensics Analyst  Recover and examine evidence  Prepare reports based on evidence  Work with law enforcement  Maintain chain of custody

13. Personal Personal CyberSec Roles – Security Auditor  Ensuring organization are adhering rules.  Assess the security risks and report it.  Recommends standards and practices.  Work with top management for remediation measures.

14. Personal Personal CyberSec Roles – CISO  Top management role in cyber security.  Heads all department in security and decision maker.  Identifies security objectives and metrics.  Managing Incident Response plan.

15. Personal Personal Getting started  Strong Basics  Networking, OS, Cryptography  Decide between security analyst/ penetration tester. Security Analyst Penetration Tester • Big data analysis • SIEM - Splunk, Qradar, ArcSight • Scripting (Python, JavaScript, SQL) • Know the tools

16. Personal Personal Getting started (contd.)  Free resources  TryHackMe  Hackthebox  Cyberdefenders  Cybrary  US Department of Homeland Security  Open Security Training  Heimdal Security  Sans Cyber Aces Online  Paid resources  Udemy  Future Learn  Coursera  Pluralsight

17. Personal Personal Preparing yourself  Make a plan.  Strong Basics.  Set up a lab and start experimenting.  Effective use of LinkedIn, Twitter, Blog.  Start planning a cyber sec final year project.  Stay updated.

18. One more thing

19. Personal Personal One more thing Password hygiene  Stop using one password for multiple accounts.  Start using a password manager. (Bitwarden, Keepass)  Enable 2FA wherever available.  Subscribe to data breach notifications from https://haveibeenpwned.com

20. Personal Personal Further reading  https://securityintelligence.com  https://thehackernews.com  https://security.stackexchange.com  https://osintframework.com  https://github.com/onlurking/awesome-infosec  https://github.com/showcases/security

21. Personal Personal Questions?

Cybersecurity career options & Getting started

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Cybersecurity career options & Getting started

Similar to Cybersecurity career options & Getting started (20)

Recently uploaded

Recently uploaded (20)

Cybersecurity career options & Getting started