6 answers
gavyn
Student
Wilber, Nebraska
1
Question
Updated
453 views
what do you do on a day to day life in cybersecurity ?
What you need in your job.
Login to comment
6 answers
Daria Mikita
49
Answers
Gdańsk, Pomeranian Voivodeship, Poland
Updated
Daria’s Answer
A cybersecurity professional may be responsible for protecting an organization's computer systems, networks, and data from unauthorized access, theft, or damage. On a day-to-day basis, some of the tasks that a cybersecurity professional may perform include:
1. Monitoring systems for security breaches: Cybersecurity professionals may use various tools and techniques to monitor computer systems and networks for signs of suspicious activity or security breaches.
2. Investigating security incidents: When a security incident occurs, cybersecurity professionals may be responsible for investigating the incident to determine the cause and extent of the damage.
3. Implementing security controls: Cybersecurity professionals may be involved in implementing security controls, such as firewalls, intrusion detection systems, and other security technologies.
4. Conducting vulnerability assessments: Cybersecurity professionals may perform vulnerability assessments to identify potential security weaknesses in computer systems and networks.
5. Developing and implementing security policies: Cybersecurity professionals may work with other stakeholders in an organization to develop and implement security policies and procedures that help to protect against security threats.
6. Keeping up-to-date with the latest security trends and technologies: Cybersecurity is a constantly evolving field, and professionals must stay up-to-date with the latest security trends and technologies to stay ahead of potential threats.
Overall, a typical day in the life of a cybersecurity professional can be fast-paced, challenging, and rewarding. It requires a combination of technical skills, analytical thinking, and attention to detail to help protect organizations from security threats.
1. Monitoring systems for security breaches: Cybersecurity professionals may use various tools and techniques to monitor computer systems and networks for signs of suspicious activity or security breaches.
2. Investigating security incidents: When a security incident occurs, cybersecurity professionals may be responsible for investigating the incident to determine the cause and extent of the damage.
3. Implementing security controls: Cybersecurity professionals may be involved in implementing security controls, such as firewalls, intrusion detection systems, and other security technologies.
4. Conducting vulnerability assessments: Cybersecurity professionals may perform vulnerability assessments to identify potential security weaknesses in computer systems and networks.
5. Developing and implementing security policies: Cybersecurity professionals may work with other stakeholders in an organization to develop and implement security policies and procedures that help to protect against security threats.
6. Keeping up-to-date with the latest security trends and technologies: Cybersecurity is a constantly evolving field, and professionals must stay up-to-date with the latest security trends and technologies to stay ahead of potential threats.
Overall, a typical day in the life of a cybersecurity professional can be fast-paced, challenging, and rewarding. It requires a combination of technical skills, analytical thinking, and attention to detail to help protect organizations from security threats.
Roberto Fernandez
Servant Leader Apprentice
44
Answers
Miami, Florida
Updated
Roberto’s Answer
That is a great question ! and by the way Information Security is one of the fastest growing disciplines in the Information Technology fields.
There are many different things Information Security analysts can do. The most frequent activities may include:
1- Designing, reviewing and/or firewall policy changes
2- Using specialized tools and experience to assess proper levels of hardening on applications and systems
3- Using specialized tools and experience to conduct scans and penetration tests (very exciting LOL)
4- Watching for events and alerts then poring over information in order to spot patterns of malicious activity
5- Pouring over massive amounts of collected data in order to perform forensic analysis after incidents (I call this the Infosec CSI and it is very fun)
6- Advising teams on what is acceptable or not regarding certain changes (telling people what then cannot do because is not secure)
This is just a very small list of tasks that are easy to understand for the "uninitiated" but the truth is that the depth in this field is tremendous and it just continues to get better. Overtime you would have made all of those things and more and depending on what your role is and your experience there could be really busy days when you have to do all of the above (and more) during a single day. You will never get bored !
There are many different things Information Security analysts can do. The most frequent activities may include:
1- Designing, reviewing and/or firewall policy changes
2- Using specialized tools and experience to assess proper levels of hardening on applications and systems
3- Using specialized tools and experience to conduct scans and penetration tests (very exciting LOL)
4- Watching for events and alerts then poring over information in order to spot patterns of malicious activity
5- Pouring over massive amounts of collected data in order to perform forensic analysis after incidents (I call this the Infosec CSI and it is very fun)
6- Advising teams on what is acceptable or not regarding certain changes (telling people what then cannot do because is not secure)
This is just a very small list of tasks that are easy to understand for the "uninitiated" but the truth is that the depth in this field is tremendous and it just continues to get better. Overtime you would have made all of those things and more and depending on what your role is and your experience there could be really busy days when you have to do all of the above (and more) during a single day. You will never get bored !
Vamshee Gunturu
Principal Engineer
187
Answers
Chandler, Arizona
Updated
Vamshee’s Answer
This is the sample job Description of Cyber Security Specialist:
Cyber security specialists’ main focus is to keep an organization’s data and IT infrastructure secure, which requires a diverse set of skills and responsibilities. This IT professional will:
Conduct threat and risk analysis and analyze the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues. They implement vulnerability assessments and configure audits of operating systems, web servers, and databases and detect patterns, insecure features, and malicious activities in the infrastructure.
Perform research, testing, evaluation, and deployment of security technology and procedures.
Run diagnostics on any changes to data to verify any undetected breaches.
Develop custom systems for specialized security features and procedures for software systems, networks, data centers, and hardware.
Develop and implement information security standards, guidelines, and procedures.
Develop firewalls to secure the network infrastructure.
Keep current with new intrusion methods and develop protection plans. They have an in-depth understanding of vulnerabilities, management systems, and common security applications.
Conduct counteractive protocols and report incidents. They offer customized risk ratings for vulnerabilities based on company policies and maintain IT security controls documentation.
Grant permissions and privileges to authorized users.
Configure anti-virus systems and consoles and conduct software upgrades.
Manage the pay-per-click (PPC) system from threats and identify and manage incidents to mitigate risks.
Have an in-depth understanding of OWASP testing methodology, Dynamic and Static Application Security Testing, re-engineering, automation, ASP.NET/JAVA, IDS/IPS systems, Burp Suite, Nmap, Nessus, Qualys, and Metasploit, etc.
Manage relationships and coordinate with clients and service providers while providing customized security assessments, implementing security policies, designing security training materials, organizing training sessions, providing technical support, and communicating security policies and procedures.
How to become Cyber Security Specialist?
Complete 4 years of Maths in High school with Good GPA
Take some AP/Regular courses in Maths, Computer Science, Networking
Join Clubs like Hackthon, Coding etc
Good Analytical Skills
Problem Solving Skills
Undergrad in Cyber Secuirity or Computer Science or Infomation Systems
Following Certifications are plus:
Cisco Certifications like CCNA, CCNA Security etc
Security+ is a CompTIA certification
Certified Ethical Hacker (CEH)
Hope this helps!
Cyber security specialists’ main focus is to keep an organization’s data and IT infrastructure secure, which requires a diverse set of skills and responsibilities. This IT professional will:
Conduct threat and risk analysis and analyze the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues. They implement vulnerability assessments and configure audits of operating systems, web servers, and databases and detect patterns, insecure features, and malicious activities in the infrastructure.
Perform research, testing, evaluation, and deployment of security technology and procedures.
Run diagnostics on any changes to data to verify any undetected breaches.
Develop custom systems for specialized security features and procedures for software systems, networks, data centers, and hardware.
Develop and implement information security standards, guidelines, and procedures.
Develop firewalls to secure the network infrastructure.
Keep current with new intrusion methods and develop protection plans. They have an in-depth understanding of vulnerabilities, management systems, and common security applications.
Conduct counteractive protocols and report incidents. They offer customized risk ratings for vulnerabilities based on company policies and maintain IT security controls documentation.
Grant permissions and privileges to authorized users.
Configure anti-virus systems and consoles and conduct software upgrades.
Manage the pay-per-click (PPC) system from threats and identify and manage incidents to mitigate risks.
Have an in-depth understanding of OWASP testing methodology, Dynamic and Static Application Security Testing, re-engineering, automation, ASP.NET/JAVA, IDS/IPS systems, Burp Suite, Nmap, Nessus, Qualys, and Metasploit, etc.
Manage relationships and coordinate with clients and service providers while providing customized security assessments, implementing security policies, designing security training materials, organizing training sessions, providing technical support, and communicating security policies and procedures.
How to become Cyber Security Specialist?
Complete 4 years of Maths in High school with Good GPA
Take some AP/Regular courses in Maths, Computer Science, Networking
Join Clubs like Hackthon, Coding etc
Good Analytical Skills
Problem Solving Skills
Undergrad in Cyber Secuirity or Computer Science or Infomation Systems
Following Certifications are plus:
Cisco Certifications like CCNA, CCNA Security etc
Security+ is a CompTIA certification
Certified Ethical Hacker (CEH)
Hope this helps!
David Bilodeau
Senior Engineer, Systems Engineering
7
Answers
Carrollton, Texas
Updated
David’s Answer
The day is spent watching for, anticipating and responding to detected attacks. Never a dull moment. Someone has to be the diligent one to learn to prevent or at least to remediate cyber attacks.
There are numerous certification programs in various disciplines around the segments of cybersecurity.
A strong background in computing and network technology and web-based application architecture is essential.
Networking, firewalls, VPN, they all use elements of some form of cybersecurity and are where the attack vectors are directed.
A bachelors degree in computer science is a bare minimum job requirement along with industry certifications relevant to your area of interest will get you an interview. Job experience and advanced degrees will likely get you a second interview.
The field remains in strong demand worldwide. Just today a major YouTube channel was hacked, and this is Google we are talking about!
Sign up for and read trade pubs like InfoWorld
Search online for “Careers in cybersecurity” and be ready for so much information it’s like drinking from a fire hose
Excel in math and science
Start as a generalist and become a specialist. No one starts out as a specialist because at the beginning they need the general information as a baseline
There are numerous certification programs in various disciplines around the segments of cybersecurity.
A strong background in computing and network technology and web-based application architecture is essential.
Networking, firewalls, VPN, they all use elements of some form of cybersecurity and are where the attack vectors are directed.
A bachelors degree in computer science is a bare minimum job requirement along with industry certifications relevant to your area of interest will get you an interview. Job experience and advanced degrees will likely get you a second interview.
The field remains in strong demand worldwide. Just today a major YouTube channel was hacked, and this is Google we are talking about!
David recommends the following next steps:
Siva jyothi Kondraju
Data Engineer
2
Answers
Hyderabad, Telangana, India
Updated
Siva jyothi’s Answer
1. Review and remediate the Top 10 OWASP vulnerabilities and document as part of security Playbook for future reference
2.Monitor Security breaches and report the incidents and document the response times
3.Build and collaborate with in the team and promote security best practices
4.Perform periodic Security testing of SAST,DAST and OSS using the relevant tools
5.More Focus towards Vulnerability Management
6.Integrate threat modelling tools and monitor threats
7.Continous monitoring Application, server compliance issues
8.DAST assessment and security penetration testing
9.Security Posture integrations to review the API security Vulnerabilities, Container Vulnerabilities and code Quality
10.Security certificate renewals with strong algorithms.
11.Monitor network traffic and identify for external attacks and exposure
2.Monitor Security breaches and report the incidents and document the response times
3.Build and collaborate with in the team and promote security best practices
4.Perform periodic Security testing of SAST,DAST and OSS using the relevant tools
5.More Focus towards Vulnerability Management
6.Integrate threat modelling tools and monitor threats
7.Continous monitoring Application, server compliance issues
8.DAST assessment and security penetration testing
9.Security Posture integrations to review the API security Vulnerabilities, Container Vulnerabilities and code Quality
10.Security certificate renewals with strong algorithms.
11.Monitor network traffic and identify for external attacks and exposure
Yumi Hibbert
Senior Threat and Vulnerability Analyst
4
Answers
Orlando, Florida
Updated
Yumi’s Answer
There are different roles in Cyber Security and I would recommend researching and choosing a role that you are passionate about. Here are a few examples of different roles:
Security Architect
Computer Forensics Analyst
Security Operations Center Engineer
Penetration Tester
Threat and Vulnerability Analyst
Application Security Engineer
Cloud Security Specialist
Incident Manager
I work in Vulnerability Management. As a Threat and Vulnerability Analyst, I spend a lot of time reviewing the existing vulnerabilities for an organization. I work with different departments to notify them of their vulnerabilities and provide a solution for remediation. In some of my roles, I was responsible for applying patches or implementing the solution. I also spend time keeping up with new vulnerabilities that are reported and researching solutions.
Security Architect
Computer Forensics Analyst
Security Operations Center Engineer
Penetration Tester
Threat and Vulnerability Analyst
Application Security Engineer
Cloud Security Specialist
Incident Manager
I work in Vulnerability Management. As a Threat and Vulnerability Analyst, I spend a lot of time reviewing the existing vulnerabilities for an organization. I work with different departments to notify them of their vulnerabilities and provide a solution for remediation. In some of my roles, I was responsible for applying patches or implementing the solution. I also spend time keeping up with new vulnerabilities that are reported and researching solutions.