Seems like in the InfoSec field companies want either Audit/Compliance or Engineering/Coding. Hate the first and no experience in the second. Where's the middle ground?
What field are yu in? There are lots of secops, appsec, red teaming opportunities. Are you looking? We’re hiring 😬
I am looking actually! My background is in risk / vendor management, GRC, and vulnerability management. My more "technical" skills are in web content filtering (whitelist/blacklist) and vulnerability management (deploying scanners, analysis, remediation, etc). I would like to get experience in the secops / pen test / forensics side of the house, but every position is looking for experience in those areas.
I second this question! I was trying to get out of the SOC but all doors were closed because I didn't program. Just took a new SOC job at a mature start up and will be starting coding classes at the beginning of the year.