4 answers
anthony
Student
Limestone, Maine
3
Questions
Asked
356 views
What tools of the trade should I be familiar with?
I'm currently at Loring Job Corps to get training in Cisco. I'm later planning on take both Advance training programs: Cyper Security Ops and Advance Computer Systems Administration.
Login to comment
4 answers
Jacob Taylor
Production Manager
521
Answers
Stafford, Virginia
Updated
Jacob’s Answer
It's great to hear that you're pursuing training in Cisco and have plans for advanced training programs in cybersecurity and computer systems administration. To succeed in these fields, you should become familiar with several essential tools and technologies. Here's a list to get you started:
**1. Networking Tools:**
- **Cisco Networking Equipment:** Since you're training in Cisco, become proficient with Cisco routers, switches, and network management tools like Cisco Packet Tracer.
- **Wireshark:** A powerful network protocol analyzer used for troubleshooting and network analysis.
**2. Cybersecurity Tools:**
- **Security Information and Event Management (SIEM) Tools:** Familiarize yourself with popular SIEM tools like Splunk, Elasticsearch, or LogRhythm for monitoring and analyzing security events.
- **Penetration Testing Tools:** Learn tools like Metasploit, Nmap, Burp Suite, and Wireshark for ethical hacking and vulnerability assessments.
- **Firewall and Antivirus Software:** Understand how to configure and manage firewall and antivirus solutions.
- **Intrusion Detection and Prevention Systems (IDS/IPS):** Learn about Snort, Suricata, and other IDS/IPS tools.
**3. Operating Systems:**
- **Linux:** Gain proficiency in Linux systems, as many cybersecurity and systems administration tasks are performed on Linux servers.
- **Windows Server:** Familiarize yourself with Windows Server operating systems for systems administration.
**4. Virtualization and Cloud:**
- **Virtualization Tools:** Learn about virtualization platforms like VMware, VirtualBox, or Hyper-V for creating and managing virtual machines.
- **Cloud Platforms:** Understand cloud computing concepts and become proficient in cloud platforms like AWS, Azure, or Google Cloud.
**5. Scripting and Programming:**
- **Python:** Python is widely used in both networking and cybersecurity. Learn scripting in Python for automation and tool development.
- **Bash/Shell Scripting:** For Linux system administration tasks.
**6. Cybersecurity Frameworks and Standards:**
- **NIST Cybersecurity Framework:** Familiarize yourself with cybersecurity frameworks and standards, such as NIST, ISO 27001, and CIS.
**7. Certifications:**
- Consider pursuing industry-recognized certifications such as Cisco CCNA, CompTIA Security+, Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), and Certified Information Security Manager (CISM) to validate your skills.
**8. Soft Skills:**
- Develop strong communication, problem-solving, and teamwork skills, which are crucial in both cybersecurity and systems administration.
**9. Stay Updated:**
- Cybersecurity and IT fields are constantly evolving. Stay updated with the latest trends, vulnerabilities, and best practices through blogs, forums, and industry news sources.
**10. Lab Environments:**
- Set up your own lab environment to practice and experiment with different tools and technologies in a safe, controlled environment.
Remember that practical hands-on experience is invaluable in IT and cybersecurity. Continuously practice, experiment, and apply your knowledge in real-world scenarios. Your training and certifications will provide you with a strong foundation, but it's your ability to apply that knowledge effectively that will set you apart in these fields.
**1. Networking Tools:**
- **Cisco Networking Equipment:** Since you're training in Cisco, become proficient with Cisco routers, switches, and network management tools like Cisco Packet Tracer.
- **Wireshark:** A powerful network protocol analyzer used for troubleshooting and network analysis.
**2. Cybersecurity Tools:**
- **Security Information and Event Management (SIEM) Tools:** Familiarize yourself with popular SIEM tools like Splunk, Elasticsearch, or LogRhythm for monitoring and analyzing security events.
- **Penetration Testing Tools:** Learn tools like Metasploit, Nmap, Burp Suite, and Wireshark for ethical hacking and vulnerability assessments.
- **Firewall and Antivirus Software:** Understand how to configure and manage firewall and antivirus solutions.
- **Intrusion Detection and Prevention Systems (IDS/IPS):** Learn about Snort, Suricata, and other IDS/IPS tools.
**3. Operating Systems:**
- **Linux:** Gain proficiency in Linux systems, as many cybersecurity and systems administration tasks are performed on Linux servers.
- **Windows Server:** Familiarize yourself with Windows Server operating systems for systems administration.
**4. Virtualization and Cloud:**
- **Virtualization Tools:** Learn about virtualization platforms like VMware, VirtualBox, or Hyper-V for creating and managing virtual machines.
- **Cloud Platforms:** Understand cloud computing concepts and become proficient in cloud platforms like AWS, Azure, or Google Cloud.
**5. Scripting and Programming:**
- **Python:** Python is widely used in both networking and cybersecurity. Learn scripting in Python for automation and tool development.
- **Bash/Shell Scripting:** For Linux system administration tasks.
**6. Cybersecurity Frameworks and Standards:**
- **NIST Cybersecurity Framework:** Familiarize yourself with cybersecurity frameworks and standards, such as NIST, ISO 27001, and CIS.
**7. Certifications:**
- Consider pursuing industry-recognized certifications such as Cisco CCNA, CompTIA Security+, Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), and Certified Information Security Manager (CISM) to validate your skills.
**8. Soft Skills:**
- Develop strong communication, problem-solving, and teamwork skills, which are crucial in both cybersecurity and systems administration.
**9. Stay Updated:**
- Cybersecurity and IT fields are constantly evolving. Stay updated with the latest trends, vulnerabilities, and best practices through blogs, forums, and industry news sources.
**10. Lab Environments:**
- Set up your own lab environment to practice and experiment with different tools and technologies in a safe, controlled environment.
Remember that practical hands-on experience is invaluable in IT and cybersecurity. Continuously practice, experiment, and apply your knowledge in real-world scenarios. Your training and certifications will provide you with a strong foundation, but it's your ability to apply that knowledge effectively that will set you apart in these fields.
Ken Taitingfong
Information Security Engineer
13
Answers
Morrisville, North Carolina
Updated
Ken’s Answer
This is going to depend on what you want to do with your career. Assuming you're steering yourself into security operations, you will be looking at a lot of logs but understanding those logs are critical. Your computer systems administrations class looks like a great supplement to your education. A few tools I recommend:
Burp Suite: for web application security testing. There's a free version and tons of YouTube videos on how to use it.
Wireshark: for analyzing network packet captures. Very useful and common tool for troubleshooting and investigating network layer issues.
Splunk: Very common log aggregation tool used for both operations and security. Grab the free version along with a developer's license. Then Splunk whatever machines you have access too (laptops, virtual machines, Mac, Windows, Linux) and any network devices that may send syslog.
AWS: There's a lot of AWS technologies to explore. You can get a free account and find training on YouTube or a number of other sources. Just be sure to delete all of your resources before your trial expires or you'll start getting charged.
Azure: Same thing as AWS.
Get familiar with Burp Suite
Get the free version of Splunk along with a developer's license
Explore Wireshark
Take a look at AWS training
Take a look at Azure training
Burp Suite: for web application security testing. There's a free version and tons of YouTube videos on how to use it.
Wireshark: for analyzing network packet captures. Very useful and common tool for troubleshooting and investigating network layer issues.
Splunk: Very common log aggregation tool used for both operations and security. Grab the free version along with a developer's license. Then Splunk whatever machines you have access too (laptops, virtual machines, Mac, Windows, Linux) and any network devices that may send syslog.
AWS: There's a lot of AWS technologies to explore. You can get a free account and find training on YouTube or a number of other sources. Just be sure to delete all of your resources before your trial expires or you'll start getting charged.
Azure: Same thing as AWS.
Ken recommends the following next steps:
Adam Quattlebaum
Senior IT Specialist
20
Answers
Montgomery, Alabama
Updated
Adam’s Answer
Very good career path! You are already on to a great start. I recommend you gain a basic, and later expert, understanding of Kali Linux and all of the tools that can be used for security-related purposes. There are a great number of websites available that will let you download Kali Linux for free for training purposes if you have access to a PC.
Research free online cyber security training.
Research Kali Linux heavily.
Adam recommends the following next steps:
Thanks, can't wait to put this advice into action!
anthony
Donald Appel
Consultant
3
Answers
DeLand, Florida
Updated
Donald’s Answer
Hello, I highly recommend continuous learning and staying updated with the latest technology trends and security threats is crucial in the field of cybersecurity and systems administration. The more tools and platforms you're familiar with, the more versatile you'll be in your career.
Cybersecurity and advanced computer systems administration encompass different topics such as network security, computer systems, threat intelligence, incident response, security architectures, and more. A good way to gain knowledge and skills in these areas is by using online learning platforms and tools.
Here are a few recommendations:
Online Learning Platforms I've used:
• Udemy: Offers a wide range of courses on Cybersecurity and Computer Systems Administration, including beginner, intermediate, and advanced levels.
• LinkedIn Learning (formerly Lynda): Offers video courses taught by industry experts in software, creative, and business skills, including Cybersecurity Ops and Advanced Computer Systems Administration.
• edX: Offers university-level courses in a wide range of disciplines, including cybersecurity and computer systems administration, taught by experts in the field.
Tools I would recommend:
• Wireshark: This is a free and open-source packet analyzer. It's used for network troubleshooting, analysis, software and communication protocol development, and education.
• Metasploit: An open-source cybersecurity project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development.
• Nmap (Network Mapper): A free and open-source network scanner designed to discover hosts and services on a computer network, thus creating a "map" of the network.
• Kali Linux: A Debian-based Linux distribution aimed at advanced Penetration Testing and Security Auditing.
• Nessus: A proprietary vulnerability scanner developed by Tenable Network Security.
Certifications I would also recommend:
• CompTIA Security+: This is a globally recognized certification that validates the baseline skills necessary to perform core security functions and pursue an IT security career.
• Certified Information Systems Security Professional (CISSP): This advanced-level certification confirms your knowledge in designing, implementing, and managing a best-in-class cybersecurity program.
• Certified Information Systems Auditor (CISA): Validates your ability to assess vulnerabilities, report on compliance, and institute controls within the enterprise.
Cybersecurity and advanced computer systems administration encompass different topics such as network security, computer systems, threat intelligence, incident response, security architectures, and more. A good way to gain knowledge and skills in these areas is by using online learning platforms and tools.
Here are a few recommendations:
Online Learning Platforms I've used:
• Udemy: Offers a wide range of courses on Cybersecurity and Computer Systems Administration, including beginner, intermediate, and advanced levels.
• LinkedIn Learning (formerly Lynda): Offers video courses taught by industry experts in software, creative, and business skills, including Cybersecurity Ops and Advanced Computer Systems Administration.
• edX: Offers university-level courses in a wide range of disciplines, including cybersecurity and computer systems administration, taught by experts in the field.
Tools I would recommend:
• Wireshark: This is a free and open-source packet analyzer. It's used for network troubleshooting, analysis, software and communication protocol development, and education.
• Metasploit: An open-source cybersecurity project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development.
• Nmap (Network Mapper): A free and open-source network scanner designed to discover hosts and services on a computer network, thus creating a "map" of the network.
• Kali Linux: A Debian-based Linux distribution aimed at advanced Penetration Testing and Security Auditing.
• Nessus: A proprietary vulnerability scanner developed by Tenable Network Security.
Certifications I would also recommend:
• CompTIA Security+: This is a globally recognized certification that validates the baseline skills necessary to perform core security functions and pursue an IT security career.
• Certified Information Systems Security Professional (CISSP): This advanced-level certification confirms your knowledge in designing, implementing, and managing a best-in-class cybersecurity program.
• Certified Information Systems Auditor (CISA): Validates your ability to assess vulnerabilities, report on compliance, and institute controls within the enterprise.