I’m looking for some information on what sort of value my previous experience would provide when looking into the ISC2 certifications, as I’m looking into my next certificate with an eye to moving into an infosec job
My previous job was titled as a support role, but it involved a number of elements of cyber security / analyst work.
I would deal with cases daily where a persons account had been hacked and taken over, sometimes by friends/family due to a dispute, sometimes it was ‘hackers’ using the accounts as bases to spam from, sometimes to be sold etc. These cases involved investigating access logs, activity logs, account changes, differentiating between the 'hackers' and 'domestic' incidents to add the 'hacker' ips to block lists to prevent future incidents, performing ownership verification via ID submissions and payment logs, going through antivirus setup/malware removal, and providing additional security advice and 2FA setup instructions once recovered. I also investigated payment fraud, phishing attempts, and exploitation of the companies services by users.
As I haven’t done the training yet, I’m not fully aware of what different domains these tasks may fall under. I was in the job for 11 years, until dec 2018, and performed the tasks for approx the last 8-9 years there. Currently I’m working in a sales environment. I have a security+ certificate, so that would already give me 1 year anyways, but would this experience help me at all with the remaining 4 years requirement?
Thanks in advance for your expertise.