Advice Needed: Career Change - Page 3

cguido

Hello everyone!

I'm currently transitioning from a career in public history to information security, and I'm eager to learn from your experiences. The cybersecurity field is incredibly fascinating to me, and I'm open to exploring various career paths within it.

I recently earned my ISC2 CC certification, and I'm actively preparing for the CompTIA Security+ exam. I'm also considering pursuing CompTIA A+ to strengthen my foundational IT knowledge.

My background in public history has provided me with valuable transferable skills. Specifically, my experience at a history museum involved significant data analysis, meticulous auditing, and detailed record-keeping, all of which I believe are highly relevant to compliance roles within cybersecurity. I am also very proficient with research, and communication, both written and oral. I'm also open to roles in risk management, and security awareness training.

I'm aware that my lack of formal IT education might be a concern for some employers, but as I only received my degree a few years ago, going back to school is not really an option for me.

My questions are:

Given my background and certifications, what are the most effective strategies for breaking into the cybersecurity field?
- What sub-field would you recommend that I start in?
What additional skills or certifications would you recommend I pursue to enhance my employability?
How can I best highlight my transferable skills and demonstrate my passion for cybersecurity to potential employers?
Are there any specific entry-level roles or internships that would be a good fit for someone with my profile?

Thank you for any advice/ help!

Spirnia

You might find this information useful as well:

https://dl.dod.cyber.mil/wp-content/uploads/ccp/pdf/805_IT_Program_Auditor-Career_Pathway.pdf

In the link, you will find the following information:

Spirnia

Is this the document I should read as part of my CCSP certification preparation?

https://cloudsecurityalliance.org/artifacts/security-guidance-v5

I downloaded the free PDF. It was updated mid last year, so the information is current!

If so, thank you for your very helpful suggestion!

I already have the current Sybex Kindle edition of the OSG and OPT as well as the ISC2 curriculum.

nkeaton

@Spirnia Yes, that is it. They are definitely the cloud experts. Standard concepts and terminology are important. The vendors all have their own. There is ENISA guidance on the site as well as other important documents. The NIST documents are older but still relevant. If you only read one, I would suggest SP 800-125 on virtualization.

Spirnia

Thank you!

I had not heard of ENISA (European Agency for Cybersecurity) for a common level of cybersecurity in Europe before.

And NIST SP 800-125 additionally comes along with 800-125A Rev. 1 and 800-125B, with all three documents covering topics around virtualization.

nkeaton

Glad that learned something. These are good things towards earning your CCSP. CSA is also no cost to join and has lots of resources. It never hurts to have memberships listed on resumes. A nearby chapter came to have a morning event recently.

Spirnia

Just joined! Thank you again!

nkeaton

Hopefully you have an active chapter locally. The closest one to me comes for visit presentations occasionally. They do always invite us to their events. They are about the coolest organization that have encountered. They truly seem more interested in spreading cloud knowledge than making money. I believe that their resources are what were the most helpful for my CCSP studying.

Spirnia

I will not be joing a chapter at this time.

I do love their documents. And the one I downloaded yesterday is quite comprehesive! I am very much impressed!

Spirnia

You may find this upcoming ISC2 webinar helpful: Check out "Breaking into Cybersecurity: Building Your Personal Brand and Mastering Soft Skills for Career Success" on BrightTALK.
https://www.brighttalk.com/webcast/260/638542?utm_source=brighttalk-sharing&utm_medium=app&utm_campa...

It will be available on the ISC2 website and the BrightTALK app.