Security Analyst advice
My friend asked for advice and I didn't have any advice for him maybe you do? he has been looking for a job for 6months now has two years experience one year as a security analyst. He keeps getting rejected with no feedback from the interviews. I know he has experience working with Splunk, Fireeye, bettercloud, SentinelOne, OpenDNS, and threatgrid. I know he is a fast learner and I know he is taking classes for free from edx and doing codecademy. But I think it might be his interviewing. Any advice or tips for interviews that I can pass on to him? What should he be studying or learning right now? #secanalyst #help #interviewing #cybersecurity
Where is he trying to apply to? Companies these days expect a security engineer / analyst to know everything. Unless he is also a developer, I would recommend him to start with a security consulting firm such as NCC or Synopsys, get experience and then move on to product companies. If not, he can get a certification such as OSCP (certificate is not as important as the skills themselves), and then try. Experience with using different tools counts to an extent, but those are just tools at the end of the day. How much analytical thinking and skills can he actually apply in the field of cyber security?
He has an AA in info. security and digital forensics then he went to WGU didn't finish because he wants to transfer for in class materials. He also has several certs, CEH, ITIL, Comptia A, CIW. He has no funds for the OSCP right now and he is still learning python with some other classes. I will pass this info to him. Thank you!
An alternative to OSCP is to self-learn via HackTheBox machines. HackTheBox has a free plan which should be good enough for him to learn or get started. The important thing is he needs practical knowledge to prove himself during the interviews. Also I mentioned OSCP vs. CEH and other certs because OSCP gives that practical knowledge, whereas other certs are just theoretical and don’t really help with practical applications.
Hiring security analysts at the moment. DM me.
DM me