How to build a development plan in the field of information security?

D

Dmitry K2015-05-13 17:37:46

IT education

Dmitry K, 2015-05-13 17:37:46

The scope is as vast as possible. There are designers, implementers, auditors, developers, managers, etc.
My current job is as close as possible to "Security analyst". I am engaged in the analysis of information security tools (ISI certification) for compliance with the governing documents. I felt that progress has stopped within the framework of the current work, which somewhat does not suit me, but nothing can be changed specifically at this point, except to start looking towards "management", which is not of interest yet.
I ask for advice from the habra community - where to move and how?

Reply

Answer the question

In order to leave comments, you need to log in

2 answer(s)

M

Maxim Kuznetsov, 2015-05-13
@gospodinmir

In general, the solution to this issue has already been given to someone.
1. Understand who you need to become in 5 years.
2. Understand the core competencies that you need to have by that time.
3. Prioritize the development of competencies.
4. Invest time, effort and money in obtaining the right competencies.
5. At least once a year, review the goal and list of competencies.
In particular, I advise you to study PKI. Those. public key infrastructure. As an analyst, you'll love this: PKI requires working very closely with the business requirements and constraints of the customer organization. At the same time, this area is actively developing.
For starters, look for this book: O.Yu. Polyanskaya, V.S. Gorbatov. public key infrastructures. - M.: Internet University of Information Technologies, 2007. Written by MEPhI specialists, a very useful thing. The course of the same name is on the website www.intuit.ru .

M

marble, 2015-05-13
_

Wherever you want - go there. You yourself wrote that:
should we choose for you? :)