Security CareerMar 20, 2020
NewRvQO84

Security Analyst advice

My friend asked for advice and I didn't have any advice for him maybe you do? he has been looking for a job for 6months now has two years experience one year as a security analyst. He keeps getting rejected with no feedback from the interviews. I know he has experience working with Splunk, Fireeye, bettercloud, SentinelOne, OpenDNS, and threatgrid. I know he is a fast learner and I know he is taking classes for free from edx and doing codecademy. But I think it might be his interviewing. Any advice or tips for interviews that I can pass on to him? What should he be studying or learning right now? #secanalyst #help #interviewing #cybersecurity

Hitachi Vantara canyoudoit Mar 20, 2020

DM me

Synopsys gear9 Mar 21, 2020

Where is he trying to apply to? Companies these days expect a security engineer / analyst to know everything. Unless he is also a developer, I would recommend him to start with a security consulting firm such as NCC or Synopsys, get experience and then move on to product companies. If not, he can get a certification such as OSCP (certificate is not as important as the skills themselves), and then try. Experience with using different tools counts to an extent, but those are just tools at the end of the day. How much analytical thinking and skills can he actually apply in the field of cyber security?

New
RvQO84 OP Mar 21, 2020

He has an AA in info. security and digital forensics then he went to WGU didn't finish because he wants to transfer for in class materials. He also has several certs, CEH, ITIL, Comptia A, CIW. He has no funds for the OSCP right now and he is still learning python with some other classes. I will pass this info to him. Thank you!

Synopsys gear9 Mar 21, 2020

An alternative to OSCP is to self-learn via HackTheBox machines. HackTheBox has a free plan which should be good enough for him to learn or get started. The important thing is he needs practical knowledge to prove himself during the interviews. Also I mentioned OSCP vs. CEH and other certs because OSCP gives that practical knowledge, whereas other certs are just theoretical and don’t really help with practical applications.

Noodle.ai suqx44 Apr 11, 2020

Hiring security analysts at the moment. DM me.