MS in Cyber Security
What is the day to day activity of a cyber security engineer at FAANG? What kind of responsibilities they have to carry from IC to Lead IC and managerial positions? And most imp how’s comp looks like in each category? I’m SWE with 10+ exp. TC 300k. I know not up to the FAANG standards. Recently security roles have moved me a bit and thinking to explore that space. Any advise is appreciated. Thank you 🙏🏻 🙏🏻
Yes something similar as @Course Hero said. Its mostly Application Assessment and Pen testing. On senior levels you will review architecture and overall system stability. Also monitor network, firewalls, log monitoring and forensics. There is also risk assessment, compliance to GDPr or whatever is applicable.
MS in security is useless unless you’re in gov. If you’re just a paper pusher in security with no experience in the trenches nobody will respect you.
Not useless if you learned something. Everyone cannot be a Security expert there is too much to do here. Those paper pushing jobs are boring but not bad. They are suited for particular type of personality and have some value, TC is low but awesome WLB.
As a lead IC, I think you'd have to vet each product in the business unit you work in. So you should know about security stuff like cors, xss, sql injection, cookies, csp, https, thoroughly understand the http headers, ciphers, symmetric/asymmetric encryption, password salts, mim attacks, etc etc. You'll have to be on top of new CVEs and suggest patches to the engineers.You'd probably either need to use available tools to run the security checks or develop an automation framework to discover some of these possible exploits i.e. pen testing. I have worked with a few security experts and this is what I've observed.