Hi Group,
Currently I am working in the Surveillance industry and was looking for a profile change to the Information Security Industry.
I tried to study the general trends people follow to get into this industry and most of them either had an in-depth knowledge of Linux / Unix / System Administration through courses like RHCE/ LPIC etc, or through direct experience.
My level of knowledge in Linux is what some may call "intermediate" - but thats a self-proclamation. I am studying for the RHCSA+RHCE exams.
Can someone please point me in the right direction. Thanks.
Hello Amit!
For getting into the InfoSec industry, the basic is that you need to have in-depth knowledge of Linux/Unix as well as Windows server-client operating systems. Further, for application security you need to have the OWASP basics clear with some experience. Plus, for network security you need to have in-depth knowledge of packet filtering, hands-on with firewalls and other intrusion devices, experience with Servers like Web, DNS, Proxy, etc. For certification, RHCE+RHCSA is cool for the Linux knowledge, and in addition to that you can earn more Security certifications later like CEH. Even CCNA Security is nice.
Regards, @Bhumish http://twitter.com/bhumish
On 18 November 2013 02:05, Amit Joshi mckagan@gmail.com wrote:
Hi Group,
Currently I am working in the Surveillance industry and was looking for a profile change to the Information Security Industry.
I tried to study the general trends people follow to get into this industry and most of them either had an in-depth knowledge of Linux / Unix / System Administration through courses like RHCE/ LPIC etc, or through direct experience.
My level of knowledge in Linux is what some may call "intermediate" - but thats a self-proclamation. I am studying for the RHCSA+RHCE exams.
Can someone please point me in the right direction. Thanks.
-- Regards, Amit Joshi -- http://mm.ilug-bom.org.in/mailman/listinfo/linuxers
Hi Amit,
Adding null-india mailing list which will be able to help you. :)
With regards, Shirish (http://twitter.com/_Garbage_)
On Mon, Nov 18, 2013 at 8:58 AM, Bhumish Gajjar bhumish.gajjar@gmail.comwrote:
Hello Amit!
For getting into the InfoSec industry, the basic is that you need to have in-depth knowledge of Linux/Unix as well as Windows server-client operating systems. Further, for application security you need to have the OWASP basics clear with some experience. Plus, for network security you need to have in-depth knowledge of packet filtering, hands-on with firewalls and other intrusion devices, experience with Servers like Web, DNS, Proxy, etc. For certification, RHCE+RHCSA is cool for the Linux knowledge, and in addition to that you can earn more Security certifications later like CEH. Even CCNA Security is nice.
Regards, @Bhumish http://twitter.com/bhumish
On 18 November 2013 02:05, Amit Joshi mckagan@gmail.com wrote:
Hi Group,
Currently I am working in the Surveillance industry and was looking for a profile change to the Information Security Industry.
I tried to study the general trends people follow to get into this
industry
and most of them either had an in-depth knowledge of Linux / Unix /
System
Administration through courses like RHCE/ LPIC etc, or through direct experience.
My level of knowledge in Linux is what some may call "intermediate" - but thats a self-proclamation. I am studying for the RHCSA+RHCE exams.
Can someone please point me in the right direction. Thanks.
-- Regards, Amit Joshi -- http://mm.ilug-bom.org.in/mailman/listinfo/linuxers
On Mon, Nov 18, 2013 at 9:50 AM, Shirish Padalkar shirish4you@gmail.comwrote:
Hi Amit,
Adding null-india mailing list which will be able to help you. :)
Please share group email id. or add me also.
With regards, Shirish (http://twitter.com/_Garbage_)
On Mon, Nov 18, 2013 at 8:58 AM, Bhumish Gajjar <bhumish.gajjar@gmail.com
wrote:
Hello Amit!
For getting into the InfoSec industry, the basic is that you need to have in-depth knowledge of Linux/Unix as well as Windows server-client
operating
systems. Further, for application security you need to have the OWASP basics clear with some experience. Plus, for network security you need to have
in-depth
knowledge of packet filtering, hands-on with firewalls and other
intrusion
devices, experience with Servers like Web, DNS, Proxy, etc. For certification, RHCE+RHCSA is cool for the Linux knowledge, and in addition to that you can earn more Security certifications later like
CEH.
Even CCNA Security is nice.
Regards, @Bhumish http://twitter.com/bhumish
On 18 November 2013 02:05, Amit Joshi mckagan@gmail.com wrote:
Hi Group,
Currently I am working in the Surveillance industry and was looking
for a
profile change to the Information Security Industry.
I tried to study the general trends people follow to get into this
industry
and most of them either had an in-depth knowledge of Linux / Unix /
System
Administration through courses like RHCE/ LPIC etc, or through direct experience.
My level of knowledge in Linux is what some may call "intermediate" -
but
thats a self-proclamation. I am studying for the RHCSA+RHCE exams.
Can someone please point me in the right direction. Thanks.
-- Regards, Amit Joshi -- http://mm.ilug-bom.org.in/mailman/listinfo/linuxers
sincerely, योगेश
"The Quieter You Become The More You Are Able To Hear".
On 18 November 2013 02:05, Amit Joshi mckagan@gmail.com wrote:
Currently I am working in the Surveillance industry and was looking for a profile change to the Information Security Industry.
I tried to study the general trends people follow to get into this industry and most of them either had an in-depth knowledge of Linux / Unix / System Administration through courses like RHCE/ LPIC etc, or through direct experience.
These skillsets relate to expertise on certain technology platforms, and are generally found in people working in the security operations domain, usually as a member of a team. Together, the team might boast of expertise in the technology being deployed at a firm or site.
Information Security is a much larger umbrella term that includes not just security operations, but also a bunch of other things - application security architecture, access control systems design and management/operations, security incident handling, encryption (transport and storage), security governance & risk management, regulatory compliance matters, business continuity and disaster recovery etc. are just some of them. At senior levels, bulk of Information Security work is management and planning (ie, lots of meetings and paperwork).
Apart from the technical skills you plan to acquire by way of certifications, you also need knowledge of the administrative and regulatory matters that govern information security in your workplace. A lot of Information Security work is really skilled negotiations, so don't underestimate the soft skills requirements either.
All the best.
Binand
-
Amit Joshi -
Bhumish Gajjar -
Binand Sethumadhavan -
Shirish Padalkar -
yogesh