Skip to main content
7 answers
8
Updated 1403 views

What are some jobs relevant to cyber security that I can acquire while attending graduate school ?

I'm in my first year of my cybersecurity graduate program and I want to obtain a part-time job working in roles related to cybersecurity. I'm wondering what kinds of positions I should be looking for that will allow me to obtain relevant experience. I would like something that will better prepare me for what working in the information security industry looks like. Any advice is greatly appreciated. #Cyber Security #information-technology #cyber-security #web-development #law #law-enforcement

+25 Karma if successful
From: You
To: Friend
Subject: Career question for you

8

7 answers


1
Updated
Share a link to this answer
Share a link to this answer

Haider’s Answer

Networking and endpoint/server troubleshooting try to be part of technical support or NOC "Network Operation Center" then move your way up into deployment of networking & servers equipment then security devices like "NGFW, IPS, WAF, DAM, DLP, Encryption" .. remember getting all basic and foundation right will help you a lot in being advanced in security later on.

Thank you comment icon Hello gentlemen, I certainly appreciate your advice because it gives me a starting point as far as what I should be looking for, so I can obtain that vital experience I need. I want to be able to use what I'm learning and gain insight into the various areas of the industry. Its seems that these recommendations will do just that. I certainly welcome any tips I can get to guide me towards a successful future in cybersecurity or related fields. Thank you both, -Armando Armando
Thank you comment icon I totally agree with starting off in working in a NOC. You have several pivot points from this role. As Haider mentioned, you can grow into more deployment and engineering, or you can make a transition over to working inside the SOC. From the SOC you can move to DFIR and/or elsewhere. Rob Cuttito
1
1
Updated
Share a link to this answer
Share a link to this answer

Aparna’s Answer

I would definitely suggest aiming to understand the best security architecture practices. Getting hands on experience in drawing the network diagrams, zoning and perimeter controls will give a good understanding of how a secure network could be implemented. I also would advise getting a hold of the CISSP book and understanding the different domains. That will definitely give you an idea on the various aspects of security.

Thank you comment icon Thank you so much for the great advice Mrs. Gajula. I am currently working in an IT internship and have gained some perspective on matters of security. But I will certainly follow up with your advice and see if I can implement your suggestion of drawing network diagrams in this role. I will also look into getting a copy of the CISSP book as well. Armando
1
1
Updated
Share a link to this answer
Share a link to this answer

Joel’s Answer

I agree with Haider. Almost any type of technical IT experience is useful and may allow you to begin to build your connections into a corporation's cybersecurity organization. Cybersecurity impacts every component of IT, so almost any technical job in IT can give you valuable experience that will be useful when you complete your graduate program.
1
0
Updated
Share a link to this answer
Share a link to this answer

Seema’s Answer

I would suggest you build your professional network within the company you are interning at. Find out who works in the IT Security team/business group and reach out to someone who is currently either in a technical (Security Engineering/Development) or business role (e.g. Marketing/Product Management) and willing to share their experiences (over video conference call if you cannot meet live). Even a 20 minute conversation every week or two might be valuable for you to ask questions and maintain a connection in the longer-term. Networking can go a long way for current learning and future opportunities. I cannot say enough about the value of my network. It's a blessing, and I keep on meeting many whom I have worked with in IT security over the past 15 years at every RSA and Black Hat Conference (when those were live that is :) Small world!
0
0
Updated
Share a link to this answer
Share a link to this answer

Daniel’s Answer

Hello Armando,

If you have a focused area, you have interest in (e.g., incident response) I would suggest looking for intern opportunities in that area. There are many great companies that offer intern opportunities. If you are unsure of what you would like to focus on its perfectly normal. If that is the case, I would try finding an intern position which is broader. Either one in strategy, consulting, working in or with any CISO office, which can really give you exposure to multiple types and roles within Cyber Security. That can really help you form a good sense of what the different roles are and where you are have the most interest. If you cannot find such a position, I would try multiple different intern programs in different fields that interest you year over year.

Hopefully, this helps and please let me know if you would like to connect and discuss further.
0
0
Updated
Share a link to this answer
Share a link to this answer

E’s Answer

Whatever will expose you to a practical security domain and let you do hands on work. Don't work in a computer lab - be an intern at a reputable security company instead, or a SOC. Learn how security incidents are triaged and worked. Learn the basics of pentesting and get the opportunity to shadow real life practitioners. This real life experience is worth far more than any number of theoretical classes or degrees. Don't worry so much about whether they are paid or not yet. The experience you get will pay for itself many times over in the future.
0
0
Updated
Share a link to this answer
Share a link to this answer

Tina’s Answer

I would suggest that Security Governance Risk and Compliance roles roles as well. This will assist in building your knowledge and experience in policy management, risk assessments, and ensuring the company is meeting its compliance requirements.
Cyber security, is comprised of policy, standards and process. The technical controls are the processes used to enforce the policy in place. Those in the cyber profession must understand the policies in order to assist in meeting business outcomes and in preventing bad actors from causing damage to the Company's brand reputation.
Additionally, today's technical dependencies and dependencies on the data generated in all industries, getting a good grasp of the legislative landscape that affects the industry you are in will also provide you to which you must operate under.
Cyber Security is broad, you can absolutely find and area within it to fit your passions. Good luck!
0