[removed]

I’m also a Bennett ! Are we related ?

What are some things that a security firm would be looking for on a resume from somebody not currently in security? I run network operations at the facility I work at, but nothing specifically in security. I'm guessing the certs and all that are fine, but I'm looking for something that has meat on the bone that I can show to a prospective employer. Thanks for the AMA!

[removed]

*African guy voice -

"Why are you gay?"

Why is the AF cyber security training so boring?

Also, I found this thumb drive in the parking lot. Would you like to plug it in to you computer???

Thank you for the reply! I’m really excited to start this course and although it may be harder, it makes me feel more confident hearing this

Lol. I had to take it for work and I don't even work in IT or network security. Shit was hard. Don't remember any of it.

Do you think our country (US) lacks behind the rest of the world in cyber security? I am concerned that we do.

Which 5g spying do you like the best. NSA and AT&T, or China and their version? Me personally I kind of prefer the Chinese, they care less about my midwest self than the local spys.

5 years Army here as well.

full beard == mad 1337 h4x0r sKiLlZ

haha shaving in the Army for 7 years made me want a long beard but a keyboard must have some sort of electromagnetic hair pull that makes the beard grow down.

Lots of positions I have seen list for qualifications like "5 years experience with degree or 8 years experience with no degree". It makes it harder because you need more experience but you can get into the field with out a degree.

Obviously it helps to have a degree but I have worked with some super smart people who never got a degree and can run circles around me on the keyboard.

Getting some certifications will help get your foot in the door. You can always go after some IT/helpdesk positions. They are not security but are good to get experience and pivot over to security.

Also there are a lot of smaller cyber security companies, also hospitals, lawyer firms, things like that have security positions that may be easier to get a job in security for them.

The certifications will help get their attention and then do some training on your own to build some knowledge.

Hey man, keep up the good work. I'm in the same role for the DiB.

My question, why does this role make us all grow long beards?

I’m planning to take a non degree certificate course for cyber security. Is it worth it will I be able to find good jobs or will they expect a Bachelors in field?

[removed]

What’s my best bet to get into cyber security with no prior qualifications? I’ve always loved technology, built computers, repaired phones and have always wanted to get into cyber security for lack of better word, the security. Any tips? Many thanks.

Great question. Some SIEMs are the worst and some are great. I like Splunk a lot because it is easy to use. I think it is something that is needed in an enterprise network. They are as good as you set them up to be. A lot of places just sent logs to their SIEM and thats it. They do not tune their logs or anything. You have to spend time making it work correctly. You have to spend the time making worth while alerts and dashboards. When we would deploy to a network the first thing we would do would be is fine tune our SIEM. Making sure the correct logs are going in and not just all the logs.

long answer short is they are as good as you let them work. Spend the time to tune them and make them work well for your organization.

Can you create an AI that argues with itself to reframe the narratives… for instance, to focus on weak points of the argument, rather than the strong points… for instance “Bernie Sanders is a socialist” vs “free health care” rather than vs “overturning citizens United”… you know, like a controller of hundreds of chatbots that argue with each other precisely to weaken the argument that actually matters most… I found that overturning citizens United was a huge argument 10 years ago, and doing so would greatly help other policies to take hold, but instead we have scattered arguments that all kind of fall under the umbrella that is no longer spoken about… I hope that was a clear enough question…

[removed]

Thank you for doing this AMA.

What are your thoughts on SIEM technologies? There doesn't seem to be a single security professional that loves their SIEM. They are noisy. They are overly complicated. They are expensive. They require more care and feeding than a newborn. Are they only a necessary evil? Or do they really provide value?

That seems like, at the very least, secret level clearance…

That is a problem in the industry. A lot of entry level jobs then say "requires 5 years experience." The market is very demanding right now. There are a lot of jobs out there but a lot of people too trying to get those jobs.

If you have basic skills then you should be good for a entry level position. I think a good attitude and showing you are trying to learn more goes a long way. You might not get the exact job you want right away but do not be afraid to take something not ideal to build that experience.

The more certs you have does help, but you need to be able to show that knowledge as well. Like I said in another post that I was a motorcycle mechanic before and I made the switch. Do not be afraid to go for it.