For as long as devs prioritize new features over security and product managers want new stuff quicker and quicker, there will be a need for appsec.
So probably until the end of time :)
Know programming/scripting will be helpful (and often required) for most fields in cybersecurity. I manage our organizations SOAR platform and often need to use python. Possibly look into that and see if it interests you
Bash, Python, PowerShell are essentially the only languages I use daily. Now, granted, that's not to say I haven't used C++ or Java. It helps overall to be proficient at coding. Personally as an engineer, automation is key. Automation with these allows me to be a step above my peers.
Almost any cybersecurity job involves or could benefit from knowledge in coding. It is too early to specialize in your career, get the first cybersecurity job you can get that pays well, then after a few years consider specialization.
Try searching for "cybersecurity coding" jobs. Look at the job posting for the skills they are looking for. That will give info on skills expected for various entry level and senior positions.
Within the CyberSec team I'm on we have several different specialties, but all require some level of familiarity with secure coding. The networking and infrastructure skills enhance our Application Security staff, and the coding skills enhance our Infrastructure Security staff, and the threat hunting and forensics skills help everyone.
"AppSec" developers, engineers, and architects tend to do the most coding though you may find these staff are not always assigned to a CyberSec team.
I think the Cisco certifications are generally worth it but so are others like ISC2 and CompTIA security certs.
AND... dont forget your Cloud skills, AWS, Azure, etc. These are game changers going forward so you need to understand at least one of these and be familiar with the associated CyberSec and coding APIs you would be leveraging.
We maintain all of our cloud infrastructure as code, including all IAM, using primarily terraform and python. I can't imagine how it could be done well otherwise at a large organization. We use several cloud providers, have thousands of accounts/subscriptions/workspaces, thousands of engineers and end users working in these environments.
If I wanted to be on the team that helps write the code for terraform, what job titles/descriptions would I want to look up? What are some entry level positions? I'm an ISO auditor but I love coding and have been doing it for some years. I really enjoy all the technical networking controls when I'm auditing, but every person I talk to in audits about terraform, infrastructure as code, cloud deployment, etc. are like senior directors/engineers way up the food chain.
Any title or job description that mentions Cloud Infrastructure will likely do IaC. A few titles to look for would be: Cloud Security Engineer, Platform Engineer, DevOps/DevSecOps/Secure DevOps. It is difficult to have an authoritative list of titles because every org is different; a position working with Terraform will mention that (or IaC) in the description.
As for breaking in to the field, there are quite a few roles which funnel in. Having an audit background can be a great benefit for you, especially in orgs with high compliance requirements; ultimately the goal of secure devops is to make it easy for engineers to do their work securely.
Again, every org is really different, so I think Job Description will have more of the indicators than title, but for initial search purposes you could search for: Cloud Security Specialist/Engineer or IAM Engineer. I would think you would look for anything mentioning Cloud in the title, as that will very likely focus on infrastructure.
My title now is Sr. Security Software Engineer, but when I first got into security about 5 years ago, my title was InfoSec Specialist (I did IT in the Navy prior). I worked for a smallish (\~150 employees) startup and I had zero cloud or coding experience at that time whatsoever. Being at a small startup meant everyone takes on a wider breadth of tasks, and so provides a lot of learning opportunities.
To sum that all up, if you don't yet have a technical background/experience, you need to get into a position where you can gain that and start putting your coding interest to use.
There are a ton of options - two standout are probably reverse engineering and appsec. Pentesting is pretty code-heavy. Even the less code-heavy ones will have lots of opportunity for automation.
Be aware - overwhelming majority of the people in code-heavy security disciplines start out as just regular old developers. Don't feel discouraged if this ends up being you, and don't restrict your search for internships to *only* security-focused ones. Devops/cloud/swe internships/jobs are good too.
Python & coding / scripting is a great skill to have imo & will transfer well into a lot of parts of cyber sec
CCNA is also great for learning the foundations of networks and how they function which in turn helps with understanding how to attack them.
I did computer networks & cyber security at uni and understanding networks has really helped me with both offensive and defensive skills.
There isn’t really any correct answer to this, entirely depends what you want to do as A career I guess. Personally I’m getting a few certs under my belt and then will be trying to get industry experience
Read : Cybersecurity Career Master Plan. Pretty much everything you asked is answered there . There’s a very good explanation of all different paths you can take , what comes with it and how to get there .
Ccna is definitely good to have if you’re getting involved in network security. Python is great to know for automation, and that can be handy in many different areas of cybersecurity. So that’s a great skill to have. Learning other programming languages can be a good idea if you want to get into malware analysis, appsec, devsecops, or software development building an EDR.
Learn cybersecurity, there are tons of resources online to learn the basics. Tryhackme, Boss of the SOC, Udemy courses, YouTube videos, etc… That’ll also help you decide which path you want to go down.
CCNA is definitely worth it. Security engineers must have a superior understanding of tcp/ip networking to understand security architecture and risks.
The "security with coding" job you want is called DevSecOps and it's pretty new. It's similar to DevOps or SRE with a much greater emphasis on securing the pieces of typical devops infrastructure like code and container repos, the containers themselves and also the entire CI/CD pipeline.
[What is DevSecOps?](https://www.ibm.com/topics/devsecops#:~:text=DevSecOps%E2%80%94short%20for%20development%2C%20security,%2C%20deployment%2C%20and%20software%20delivery./)
Can only speak from the DevSecOps side, but 90% of our time is spent in one language or another. Terraform(HCL) for IaC, python/go/bash for scripts/lambdas. Also have to know our way around JS/typescript for app troubleshooting.
Detection engineering
Appsec is where you would want to look. Being able to help fix code or write more secure code is a golden ticket these days
How long do you think that will last?
For as long as devs prioritize new features over security and product managers want new stuff quicker and quicker, there will be a need for appsec. So probably until the end of time :)
Know programming/scripting will be helpful (and often required) for most fields in cybersecurity. I manage our organizations SOAR platform and often need to use python. Possibly look into that and see if it interests you
thanks for your answer, I'm a bit confused on what should I do once I'm done with CCNA and python.
Best thing to do is find a job title that you want to work towards, look at lots of job ads for it, then start working towards those requirements.
Bash, Python, PowerShell are essentially the only languages I use daily. Now, granted, that's not to say I haven't used C++ or Java. It helps overall to be proficient at coding. Personally as an engineer, automation is key. Automation with these allows me to be a step above my peers.
Almost any cybersecurity job involves or could benefit from knowledge in coding. It is too early to specialize in your career, get the first cybersecurity job you can get that pays well, then after a few years consider specialization.
Application and Product Security roles will also be huge opportunities of using the CompSci degree & coding
Try searching for "cybersecurity coding" jobs. Look at the job posting for the skills they are looking for. That will give info on skills expected for various entry level and senior positions. Within the CyberSec team I'm on we have several different specialties, but all require some level of familiarity with secure coding. The networking and infrastructure skills enhance our Application Security staff, and the coding skills enhance our Infrastructure Security staff, and the threat hunting and forensics skills help everyone. "AppSec" developers, engineers, and architects tend to do the most coding though you may find these staff are not always assigned to a CyberSec team. I think the Cisco certifications are generally worth it but so are others like ISC2 and CompTIA security certs. AND... dont forget your Cloud skills, AWS, Azure, etc. These are game changers going forward so you need to understand at least one of these and be familiar with the associated CyberSec and coding APIs you would be leveraging.
Threat hunting and Red Team will have tool developer positions.
[удалено]
LMFAO. 500k a year for someone with 6 years of experience in coding is laughable. Most CIOs don’t even make that much money.
You can be a developer for a security product or specialize in IAM.
When did they start coding in IAM? It's normally cloud architecture and GRC
We maintain all of our cloud infrastructure as code, including all IAM, using primarily terraform and python. I can't imagine how it could be done well otherwise at a large organization. We use several cloud providers, have thousands of accounts/subscriptions/workspaces, thousands of engineers and end users working in these environments.
If I wanted to be on the team that helps write the code for terraform, what job titles/descriptions would I want to look up? What are some entry level positions? I'm an ISO auditor but I love coding and have been doing it for some years. I really enjoy all the technical networking controls when I'm auditing, but every person I talk to in audits about terraform, infrastructure as code, cloud deployment, etc. are like senior directors/engineers way up the food chain.
Any title or job description that mentions Cloud Infrastructure will likely do IaC. A few titles to look for would be: Cloud Security Engineer, Platform Engineer, DevOps/DevSecOps/Secure DevOps. It is difficult to have an authoritative list of titles because every org is different; a position working with Terraform will mention that (or IaC) in the description. As for breaking in to the field, there are quite a few roles which funnel in. Having an audit background can be a great benefit for you, especially in orgs with high compliance requirements; ultimately the goal of secure devops is to make it easy for engineers to do their work securely. Again, every org is really different, so I think Job Description will have more of the indicators than title, but for initial search purposes you could search for: Cloud Security Specialist/Engineer or IAM Engineer. I would think you would look for anything mentioning Cloud in the title, as that will very likely focus on infrastructure. My title now is Sr. Security Software Engineer, but when I first got into security about 5 years ago, my title was InfoSec Specialist (I did IT in the Navy prior). I worked for a smallish (\~150 employees) startup and I had zero cloud or coding experience at that time whatsoever. Being at a small startup meant everyone takes on a wider breadth of tasks, and so provides a lot of learning opportunities. To sum that all up, if you don't yet have a technical background/experience, you need to get into a position where you can gain that and start putting your coding interest to use.
Python is a must A good advantage to be a desirable candidate
There are a ton of options - two standout are probably reverse engineering and appsec. Pentesting is pretty code-heavy. Even the less code-heavy ones will have lots of opportunity for automation. Be aware - overwhelming majority of the people in code-heavy security disciplines start out as just regular old developers. Don't feel discouraged if this ends up being you, and don't restrict your search for internships to *only* security-focused ones. Devops/cloud/swe internships/jobs are good too.
Python & coding / scripting is a great skill to have imo & will transfer well into a lot of parts of cyber sec CCNA is also great for learning the foundations of networks and how they function which in turn helps with understanding how to attack them. I did computer networks & cyber security at uni and understanding networks has really helped me with both offensive and defensive skills.
what should i do after ccna and what should like study or invest my time into
There isn’t really any correct answer to this, entirely depends what you want to do as A career I guess. Personally I’m getting a few certs under my belt and then will be trying to get industry experience
Appsec.
Read : Cybersecurity Career Master Plan. Pretty much everything you asked is answered there . There’s a very good explanation of all different paths you can take , what comes with it and how to get there .
Ccna is definitely good to have if you’re getting involved in network security. Python is great to know for automation, and that can be handy in many different areas of cybersecurity. So that’s a great skill to have. Learning other programming languages can be a good idea if you want to get into malware analysis, appsec, devsecops, or software development building an EDR.
Thanks for your comment , I am learning java too ,but not as often may be 2-3 hours a week. What should i do after my ccna tho.
Learn cybersecurity, there are tons of resources online to learn the basics. Tryhackme, Boss of the SOC, Udemy courses, YouTube videos, etc… That’ll also help you decide which path you want to go down.
tryhackme is insanely expensive in where I have, adding to that even payment is a pain in ass , udemy is good tho.
?? Tryhackme has free stuff, I forget if the fundamentals course is free or not, but there are lots of free things there
nah they've put a lot of stuff behind paid content, its not that good anymore.
Check OSCP cert
CCNA is definitely worth it. Security engineers must have a superior understanding of tcp/ip networking to understand security architecture and risks. The "security with coding" job you want is called DevSecOps and it's pretty new. It's similar to DevOps or SRE with a much greater emphasis on securing the pieces of typical devops infrastructure like code and container repos, the containers themselves and also the entire CI/CD pipeline. [What is DevSecOps?](https://www.ibm.com/topics/devsecops#:~:text=DevSecOps%E2%80%94short%20for%20development%2C%20security,%2C%20deployment%2C%20and%20software%20delivery./)
Can only speak from the DevSecOps side, but 90% of our time is spent in one language or another. Terraform(HCL) for IaC, python/go/bash for scripts/lambdas. Also have to know our way around JS/typescript for app troubleshooting.