Background first, so I’m currently working as an optical engineer in Europe. I am moving to the US in a few months and planning to switch to security domain for more jobs and higher salary of course. I would really appreciate any advice from people in security field. I have been studying every day for many months now and I have done so far: 1. Certified in Cybersecurity from ISC2 2. Google’s cybersecurity certification 3. Python specialization certificate from Coursera, (I have some programming experience using python, built my own crypto trading bot with many different strategies 😅 using some libraries and help from google but no help at all from ChatGPT) 4. Cisco Networking basics and Cisco Networking devices courses certificates 5. Oracle database use basics from Coursera 6. I am also learning the use of Linux, and shell/bash scripting. Next I am confused about a couple of things: I am more interested in App security domain, or generally security engineering side because I mostly like technical things, I have been enjoying programming in python. But I have heard that it’s very difficult to get into app security if you don’t have app development experience. I want to know how tough would it be for me to get into this field, or is it even gonna be possible? I am planning to take IBM’s full stack development specialization track from Coursera that’ll take 4-5 months to learn app development. Is it worth it? There’s also cloud security domain, I am confused about growth potential in this field, especially talking about salary and job opportunities in big tech companies!? Any advice in this regard? Though, I am still planning to do some AWS or Azure certification (which one is better). Any recommendations about cloud security in general? Any other advice regarding career in security? Any recommendation about learning anything in next few months? Thank you! Current TC: 60k euros 🥲 #Security #Cybersecurity #Cloud #Meta #Microsoft #Amazon #Google
Following
It looks like you did a good job digging into this topic. You are correct about AppSec. In most cases previous development experience is required and completing a course is not enough. The good thing is that it’s not difficult to gain such experience. It doesn’t have to be a commercial product. Could be an open source project you can contribute to. This will show your experience as a developer and you even could practice AppSec activities, like performing secure code reviews, threat modeling, some pen testing, working on this project.
Thank you 😃
Following