March 22, 2013 at 12:38 am #8315TribanParticipant
I learned a long time ago that you should always keep your options open. So naturally I always keep my resume updated and for the most part available on the job boards. Over the last year or so I’ve gotten a number of calls/emails for various security jobs. I would say many are contract based but there were a good number that were full time, only on the other side of the country. So it is safe to say, there are many jobs out there for Information Security pros (“you’re welcome” – Capt. Obvious). When I made my way over to this career from the general IT Infrastructure realm, I always figured I would stay on the defensive side. I never considered I would have the skill to be a full time pen-tester, though I do enjoy the feeling of the challenge. I always figured I was better tooled for defense.
Could I have done the work? Don’t know, I imagine if I made it my focus, I probably could. Is it something I would like doing? At this time probably more than what I am currently doing, but not for an almost 2 hour commute along with regular travel around the country. Just thought I would share. There is plenty of work to be had out there. The population of skilled InfoSec pros is growing, but not as fast as the job openings. If you have “security” anywhere in your resume, you will most likely get a call from some outsourced recruiter or a company who doesn’t really know what they want but someone says they need a security guy. Anyway sorry for the book, but figured I’d share the story.
Good luck out there!
March 22, 2013 at 2:47 am #52337GrendelParticipant
Thanks for posting this – I have a lot of students / inquiries that wonder if there are jobs in this field. I think they don’t believe me that there are that many opportunities, or they think I sound too Pollyannic.
I’ve even seen job requests come to the university that say “no experience needed… we will teach them what they need to do” for pentesting. That’s amazing, if you ask me.
Anyway, again, thanks for sharing… 3xban is correct, the jobs are out there.
March 22, 2013 at 5:13 am #52338impelseParticipant
In my area a saw a lot of security analyst jobs, if I compare tot he last year it grew a lot.
March 22, 2013 at 12:38 pm #52339alucianParticipant
Thanks for the story.
I believe that the average quality of security pros is not increasing. The problem is that they just don’t keep the peace witht the advances in the field. I know is hard, and I know that it requires a lot of effort, but the ones passionate about this will pay the price.
I am just looking arround me and… things are not that good. 🙂 I don’t want to go into details, not now.
I love this forum 8)
March 22, 2013 at 10:42 pm #52340dynamikParticipant
The problem with a lot of offensive positions is that you often have to be willing to relocate and/or travel. We’ve struggled filling the couple positions we’ve opened over the last year, and I know many other organizations are having the difficulty. MaXe literally moved halfway around the world for the gig he’s at now. Working out the logistics may be more challenging than actually finding a position.
March 22, 2013 at 10:47 pm #52341impelseParticipant
The probably with a lot of offensive positions is that you often have to be willing to relocate and/or travel. We’ve struggled filling the couple positions we’ve opened over the last year, and I know many other organizations are having the difficulty. MaXe literally moved halfway around the world for the gig he’s at now. Working out the logistics may be more challenging than actually finding a position.
I notice that, I just saw one that it is talking about 50% travel. My job was 90% travel (around the city). Normally when I see a job with travel I always think between states.
What about the telecommute, doesn’t work for you guys?
March 23, 2013 at 1:43 am #52342TribanParticipant
I think at this point the demand is so high that companies are moving away from trying to find the expert to looking for someone with the ability to become the expert. The experts are all hired and hopefully happy. But there are plenty of new guys out there just aching for a chance to get into the field. I think the biggest thing teachers like Grendel can do is emphasize the learning doesn’t stop and the employer may not always be willing to send you off to the $4K SANS course. Like any career if you want to succeed you need to work at it on and off hours. A friend of mine tells me I need to unplug but I don’t think he quite gets the fact that when I come home and fire up the lab, that is me unplugging. I can’t do somethings I want to do at work, so I do them in the home lab. It also is me educating myself on what is new out there in the world of InfoSec. I will say that the actual unplugging is me grabbing the camera and the hiking boots to head off into the hills for some fresh air. I tend to appreciate that more when I’ve spent the week working and learning, the brain needs to switch gears every so often.
Also for those of you with students, one more thing to recommend… If they want to find opportunities, they need to get out there and network. Go to the local security groups (ISSA, Hackerspaces, etc…). Get to events like B-Sides and even venture into local user groups for like Linux or OWASP. Not only will they have the opportunity to learn something or even teach something, they will get to know some people in their area. Another suggestion is to work your way to doing a talk. It gets your name out there and hopefully shows people you know a thing or two about something. The same friend of mine that tells me to unplug also tells me I should do a talk. Though I still have no idea what it would be about.
Anyway glad I sparked some discussion. Oh and on the topic of Telecommuting, I have a total of 2 hours of driving a day for my job. So luckily my current position allows for me to either work from home or work from our SOC which is much closer than my office. I think the idea of telecommuting is great but I also thing face time in the office is also important. There are somethings that are best collaborated on in person.
- You must be logged in to reply to this topic.