Charlotte Bass’ Post

"According to ISC2, an organisation of cyber-security professionals, 39% of new employees in the sector came from a non-IT role." It is great to see some of the success stories of professionals moving from non-IT roles into technology positions and more specifically cyber security positions. With the demand for cyber professionals so high, companies who are open-minded in giving opportunities to career changers could well benefit from an otherwise unknown and untapped skill set. Would you consider a shift into the cyber security space? #careerchange #ITjobs #cybersecurityjobs #cybersecurityrecruitment

As a cybersecurity trainer, I often encounter professionals from other fields mulling a shift to cybersecurity. Here is an insightful article that may help. Key takeaways: “A lot of security is about people, process and technology... technical skills come out lower than communication, analytical and problem-solving skills.” " ... soft skills are sometimes understated in cyber-security... [The] ability to speak with the client, to put them at ease, to clearly explain the process and reassure them that they've got someone on their side fighting their corner.” https://lnkd.in/gf7kc8S6

Bit of a humble brag, but isn't it great when you have an idea that comes together? What started as a feature pitch ended up with Panaseer, Chartered Institute of Information Security and Secureworks all in the same BBC piece! This is my Sistine Chapel. Key ingredients were: A journalist that's happy to talk through an idea and collaborate to find an angle that's both timely and interesting, and willing to take time to speak to a few people to verify the idea - thank you Sean McManus. Clients that are bold enough to speak candidly about their careers and the industry - thank you Leila Powell, Amanda Finch FCIIS and Rebecca Taylor. /// I love the big splash campaigns in PR, but sometimes simply bringing a few people together drives great results. Hopefully, this piece can inspire people from outside of the #cybersecurity industry to think twice before discarding the idea of a career in the sector because they don't think they have the experience. https://lnkd.in/e4vfnZ8X

I agree with what this article says. It's an eye opening on the current cybersecurity landscape, especially the job market and the so called "entry level" roles that actually can't be entry level! Would you call a first time C level job an "entry" level? Interesting reading.

#InterviewTips for #DataSecurityAnalysts #cybersecurity #datasecurityanalyst #jobskills ------- https://lnkd.in/e7mYTC2B ------- With #cyberattacks on the #rise #worldwide, #companies #everywhere are #anxious to #keep their #databases as #secure as #possible. In order to do so, many #hire #datasecurityanalysts, who (as the name implies) #analyze #techstacks for #vulnerabilities to #internal and #external #attacks. Given the #importance of the #role, you can #expect that #jobinterviews for data security analysts are #prettyintense, and you’d be #right. What do you #need to #know about #interviewing for a data security analyst position? It’s more than just knowing how to define a man in the #middleattack or #installing the #latest #antivirussoftware. We’ll #breakdown #everything you #need to #know about the #role and #interviewing for it. #DailyDuties of a #DataSecurityAnalyst As with many tech jobs, the daily tasks facing a data security analyst can #vary #wildly by #company. However, here are the “#bigitems” that #usually #endup in their #queue: ▪︎ #VulnerabilityAssessments: Identifying and analyzing weaknesses in networks, systems, and applications. ▪︎ #IncidentResponse: Investigating and mitigating security breaches, minimizing damage and downtime. ▪︎ #SecurityMonitoring: Analyzing logs and alerts to detect suspicious activity and potential threats. ▪︎ #SecurityPolicy #CreationandImplementation: Establishing and enforcing data security protocols across an organization. ▪︎ #PenetrationTesting: Simulating cyberattacks to identify and address vulnerabilities before attackers exploit them. (#Depending on the #size of the #organization, this role might be covered by a #pentester.) As you might #expect, these #tasks #demand a #range of #technical and “#soft” #skills, including (but definitely not limited to): ▪︎ #TechnicalAbilities: Network security, web application security, cryptography, intrusion detection systems (IDS) and prevention systems (IPS), firewalls, and antivirus software. ▪︎ #AnalyticalSkills: Ability to analyze large datasets, identify patterns, and draw meaningful conclusions. ▪︎ #ProblemSolvingSkills: Devise solutions to complex security challenges and implement effective mitigation strategies. ▪︎ #CommunicationSkills: Clearly articulate technical concepts to both technical and non-technical audiences. ▪︎ #AttentiontoDetail: Meticulous observation and keen awareness of even seemingly minor anomalies How Can You #Prepare for a #DataSecurityAnalyst #Interview? No matter what the company, the interview for a data security analyst position will largely center on your technical abilities. How will you #strengthen your #potential #employer’s #defenses? How will you #prevent #attacks and #ensure that #tools such as #encryption are #uptodate ? In broadest terms, here are some #questions you could #face: “What #interests you about the #datasecurity #field?”

This is discouraging. EDIT: This does not surprise me. I am not surprised. Yall can quit saying that now. "The Chartered Institute of Information Security enlisted the help of a former police officer and covert operative to analyze dark web forum job adverts from June to December 2023. What he found was a surprising number of what seemed to be cybersecurity professionals at various stages of their career prepared to sell their skills for nefarious ends. "The study revealed three types of professional touting for business on underground sites: 1. Experienced IT and cybersecurity professionals, including pen testers, AI prompt engineers and web developers. Some claimed to work for a “global software agency” while others stated they needed a “second job” 2. New starters in cybersecurity looking for both work and training. Professional hacking groups also advertise for young talent, with some offering on-the-job training in areas such as OSINT and social media hacking 3. Professionals from industries outside cybersecurity/IT, including PR, content creation and even one out-of-work voice actor advertising for work on phishing campaigns" Any suggestions from all the Mega Minds on this site claiming they know how to transform the industry and cure all the ills? Suppose return to office (RTO) is the answer? (Hope my sarcasm is leaking through on that question...) #ImOnIt #cybersecurity #womenincybersecurity #darkweb #darkwebforums #cybercrime #firstworldproblems

Given the rapidly increasing threat level, cybersecurity has become a top priority for organisations of all sizes. As many companies adopt leaner structures, this is one area where cutting corners is not an option. Reach out to discuss how our Interim Practice can help you bridge the gap. #Interimexecutive #cybersecurity #technology

In the short term, fair pay and strong leadership are about all we have. In the long term, cybersecurity needs to be professionalized like accounting and law. I believe that people new to cyber benefit greatly from the structure, supervision, and ad hoc mentoring that come with working in an office 9-5 M-F. We learn crucial lessons from being "in the room," literally. We discover how to comport ourselves in business by watching others do so. Are office environments distracting? Yes. The distractions of the office are less acute than those of the distractions of home. And office distractions offer opportunities to learn and grow that aren't available over Zoom. The rituals we endure, like commuting, greeting people in the morning and at the end of the day, office chit-chat, and forming relationships, are valuable. In the first few years of one's career, they're much easier to come by face to face. Avoiding a sense of alienation requires the development of skills and habits that are learned in the office. Professional eer pressure is also peer support. Are remote workers more productive? They can be. Is commuting wasteful? For those who are new to business and cyber, it's worth the cost, in my experience.

I think this is a great tool for those either entering cybersecurity, or for those looking to advance their careers. It is very interesting to see the interactions and connections of the different disciplines. https://lnkd.in/gNmjBV84

Facing a cybersecurity talent crunch? Discover how multifunctional roles and specialized skills are reshaping career trajectories in this ever-evolving field. #CybersecurityTrends #CareerGrowth #TalentShortage #cybersecurity #security #news https://lnkd.in/e9QTqkbK