I'm a Master of Cybersecurity student and just finished my first semester. I have a Bachelor's in Engineering (B.Tech) and worked in IT for 2 years as a Game developer (Unity) which I quit to do my Master's. Currently working as IT support while I'm studying. My current plan is to be a red teamer and I wanted to know what roles are regarded as being in the red team, how interesting the job is, what the wlb is, etc. I also want to know what I can do from now on like learning hacking through tryhackme or maybe some LC for problem solving skills, getting better at a language like C, C++ or python, etc to get a high paying security role. I would also like to know which companies are the best for cyber security or if cyber security is a good job at all. TC: 30k Aud #cybersecurity #security #interview #google #meta #apple #cisco #microsoft #accenture #coinbase #robinhood #goldmansachs #jpmorganchase
This isn’t really true. Majority of companies of decent size have a mix of internal and outsourced security people. Generally outsource L1 SOC type roles, as well as yearly pen testing and similar. Lots of roles in blue team, risk, governance, compliance, etc. some companies have red team or pen testing, but those are often outsourced to consultants or specialised firms.
Thanks for the nice answer guys.
Cyber security is a great field to be in, its not going away anytime soon. Your masters degree won't help much, more important is to improve your hacking skills on things like hackthebox and others. If you get a meaningful cert (like the OSCP) that will really help you get hired but you can still get hired without certs too. Also your title and job description would most likely be "penetration tester", not "red teamer", as red team is a specialization of pen testing.
Can’t believe there’s only one post here mentioning OSCP - I know a dude who was a nurse, and went and got his OSCP on his own and landed a red team job. OSCP is the way to go.
Listen carefully: if you want to succeed in cybersec, forget about diplomas, THM, useless certs, and gef yourself some real world experience in a similar position. Forget about high compa. Survive the boring part if you need. But get some damn xp. This will pay off in the long run. That is the single battle proven test of competency in this field. All the rest are lies to exploit delusional noobs. Knowleageble folks with some YOE have job security for life in this field.
So practice stuff like tryhackme?
Do what you need to learn. THM is fine at some extent. But this won’t land you your dream job. Everyone else is doing the same. The truth is, the good jobs in the field are for those with experience. There are way too many bug hunters, top x% in THM, with a bunch of useless papers, who know sh*t. Real life challenges are quite different, and none of these things will prepare you to deal with them. Beginners need to stop focusing on support training (which is a good add on) and grab a job that allow you to grow while on the front lines.
Start with these: Hack the Box IPSec YouTube Videos Offensive Security Certified Professional (OSCP) Black Hat Python book Comp at a tech company is the same as SWE
Cybersecurity was/is (mostly was) a great field. Most companies are outsourcing to low labor cost countries either directly or through pure play outsources. Unless your work is tied to national security and can get respective clearance, where comps are lucrative. Still great work if you can find your niche.
I don't really like working for any government.
Lol, no. Maybe if you’re HCL tier Im cleared and don’t do government work because private sector will pay good $ to the right people