tanner Posted November 7, 2022 Share Posted November 7, 2022 (edited) Hey y'all, I'm looking for a bit of advice. A bit of context about my background: I've been in security for about a year and a half now, and did on-site tech support for a year and a half before that, so I'm obviously pretty early in my career still. I don't currently have a degree but I'm working on one from WGU. I am currently in OT security at my company, and we're basically building this program from scratch. The problem is that I hate it, to the point that I absolutely would've quit by now if I could afford to. (I could complain a bunch about how I ended up here, but I'll keep that to myself for now...) I like to get my hands dirty, dig into things, figure out the "whos, whats, wheres, hows", etc. Before this, I did endpoint security stuff at my company. I really did enjoy that, especially when I'd come across stuff that shouldn't be happening in the network. Even though this was never technically part of my job, I would often go through the proxy and firewall logs in Splunk to find suspicious traffic and look at threat events in McAfee. What I don't like is spending all day in meetings, talking about how each individual company policy relates to SP800-171, or how we plan on communicate a new policy to the rest of the company. As you can probably guess, this is what my day looks like right now. I do realize these will be part of pretty much any job in infosec, but ideally not the entire job. Anyway. I think I want to get into the threat hunting or IR field. However, I have no idea how. Every "entry-level" job for one of these that I see requires at least a degree, and usually experience in a SOC. The actual entry-level stuff always pays *significantly* less than I'm making now. Like, often times less than I made doing tech support. I have no idea how to actually get started in this area. There seems to be all sorts of resources for red team out there, but not so much for blue. If anybody has any advice on how to get started in this, I'd really really appreciate it. Thanks! Edited November 7, 2022 by tanner 1 Link to comment Share on other sites More sharing options...
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!Register a new account
Already have an account? Sign in here.Sign In Now