Answer the question
In order to leave comments, you need to log in
S
S
Skif White2015-01-30 08:05:41
Skif White, 2015-01-30 08:05:41
How to become an information security officer?
Good day! I have such a plan question, how to become an information security officer? Is it necessary to be a bachelor of the faculty of information security? Or do you need some special courses and certifications? What, in its essence, is an IS officer?
4 answer(s)
@aslan_im
No, a specialized VO only slightly increases the chances of a successful review of a resume, because it will be easier to get to the interview, where you will already be able to demonstrate all your prof. quality.
Some employers have requirements, but as a rule, everyone considers the presence of certificates "as a plus".
In your case, I would recommend
comptia security +, in the Russian Federation I rarely hear mention of it, but in Europe / America it is considered recognized for young professionals (in general, the entire foundation of information security is there, if you want to quickly dive into the issue, then it’s just right)
Above wrote about CISA, CISSP and CISM, please keep in mind that in order to pass the exam you will need to prove that you have 5 years of work experience in the profile. (passing Comptia gives a bonus for 1 year, i.e. you will need 4 years of work experience to pass CISA / CISM ....)
CCNA - fundamental for
CCNA Security networks - if you are interested in the CISCO engineering direction
MS has a bunch of security certifications for
CheckPoint and the like.
However, if you think that you need to strengthen your knowledge and get a certificate as a bonus, I would recommend starting with comptia security +.
Again, it all depends on the company and direction, somewhere the routine is continuous (e.g. in large banks), somewhere there is a constant stream of motley projects (consultants, integrators, etc.)
Understand what area you are interested in (management, audit, engineer), read more books, go to interviews, if I were you, I would definitely not focus on small companies where the information security department consists of two employees (you and the boss) and small integrators, where are you and IT specialist and IB specialist, and presale and those. phone support.
Look towards large integrators, consultants, banks or small companies that have a clear division of roles (salespeople sell, IT support, auditors sniff around)
. to full positions :)).
ps
Keep in mind that the vacancies of technical specialists. support, system administrator assistants, etc. not for you., because this development in the direction of IT and information security has a very superficial relationship.
@dero2084
@rtxf
W
William Thorn, 2015-01-30 @aslan_im
Is it necessary to be a bachelor of the faculty of information security?
No, a specialized VO only slightly increases the chances of a successful review of a resume, because it will be easier to get to the interview, where you will already be able to demonstrate all your prof. quality.
Some employers have requirements, but as a rule, everyone considers the presence of certificates "as a plus".
In your case, I would recommend
comptia security +, in the Russian Federation I rarely hear mention of it, but in Europe / America it is considered recognized for young professionals (in general, the entire foundation of information security is there, if you want to quickly dive into the issue, then it’s just right)
Above wrote about CISA, CISSP and CISM, please keep in mind that in order to pass the exam you will need to prove that you have 5 years of work experience in the profile. (passing Comptia gives a bonus for 1 year, i.e. you will need 4 years of work experience to pass CISA / CISM ....)
CCNA - fundamental for
CCNA Security networks - if you are interested in the CISCO engineering direction
MS has a bunch of security certifications for
CheckPoint and the like.
However, if you think that you need to strengthen your knowledge and get a certificate as a bonus, I would recommend starting with comptia security +.
Again, it all depends on the company and direction, somewhere the routine is continuous (e.g. in large banks), somewhere there is a constant stream of motley projects (consultants, integrators, etc.)
Understand what area you are interested in (management, audit, engineer), read more books, go to interviews, if I were you, I would definitely not focus on small companies where the information security department consists of two employees (you and the boss) and small integrators, where are you and IT specialist and IB specialist, and presale and those. phone support.
Look towards large integrators, consultants, banks or small companies that have a clear division of roles (salespeople sell, IT support, auditors sniff around)
. to full positions :)).
ps
Keep in mind that the vacancies of technical specialists. support, system administrator assistants, etc. not for you., because this development in the direction of IT and information security has a very superficial relationship.
D
dero2084, 2015-01-30 @dero2084
Everything will depend on the company's requirements for the employee, as well as the baggage of knowledge in the field of IT. Most likely, you will need certificates in information security (CISA, CISSP, CISM and others), knowledge of the standards of the ISO 27000 group, namely ISO 27001:2013 and 27002:2013, the ability to develop information security documents (policies), implement an ISMS. The profession is new and promising.
R
rtxf, 2015-01-30 @rtxf
With questions like this, you will definitely not be hired for this position.
Similar questions
D
A
A
M
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question