Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? This is the time and place to ask!

  • KNova@infosec.pub
    link
    fedilink
    English
    arrow-up
    3
    ·
    edit-2
    11 months ago

    Wondering how I can best spend my time in a vast universe of infosec knowledge.

    I feel like a lot of learning websites are geared towards pentesting, because it is a very active / immediate skillset - if you do things right, you’ll get a flag.txt or something. I guess I’m just looking for something that isn’t just watching videos or plugging away at Jeopardy style learning (HtB, Try Hack Me). But I’m also a bit directionless at the moment - there’s so much to learn and I don’t know which way to go.

    Edit: decided to peruse some of the older topics for immediate gratification, came across your great guide here - https://shellsharks.com/getting-into-information-security - problem is I do a lot of this stuff already. I think I need to figure out my own direction.

    • shellsharks@infosec.pubOPM
      link
      fedilink
      English
      arrow-up
      1
      ·
      11 months ago

      Yeah infosec is pretty huge. Do you have an idea more specifically of what you want to do? Like what type of role are you looking for or skills would you like to have?

      • KNova@infosec.pub
        link
        fedilink
        English
        arrow-up
        1
        ·
        11 months ago

        I’m doing information assurance / GRC stuff at the moment. Not sure what the end goal is.

        I think I might just need to soak it all in. I’m not particularly great at stuff like HackTheBox at the moment, but I’m sure that can be changed with more practice.

        • shellsharks@infosec.pubOPM
          link
          fedilink
          English
          arrow-up
          1
          ·
          11 months ago

          Fair enough. Just remember, there’s more (a lot more) to infosec than just Hack the Box stuff.