Same principle as a former burglar who now installs security systems or a former soldier who now works as a bodyguard. You've got the skills, you just want to use them in a different way!

[–] jol@discuss.tchncs.de 37 points 4 days ago

Or even just a programmer that decides not to work for FAANG or whatever the acronym is now, and not use their skills for evil.

[–] FauxLiving@lemmy.world 39 points 4 days ago (2 children)

No comment

[–] TropicalDingdong@lemmy.world 20 points 4 days ago

collapsed inline media

[–] chicken@lemmy.dbzer0.com 7 points 3 days ago

#opsec

[–] TropicalDingdong@lemmy.world 29 points 4 days ago

[ Their after hours hobby of illegally breaking into computers and websites ]

[–] tetris11@lemmy.ml 25 points 4 days ago

Let's just say there was more than one cow that jumped over the moon...

[–] SendMePhotos@lemmy.world 21 points 4 days ago (2 children)

Is there any way to break into the field without being paid garbage? Are there part time options somewhere? Freelancing? Something so I can get that delicious xp to support my degree?

[–] png@discuss.tchncs.de 17 points 4 days ago

I'm writing this comment from the restroom at my part time student job at a cybersec-consulting firm so that's definitely one way.

[–] Mikina@programming.dev 6 points 3 days ago

I started as part time without any experience durring my college. I was studying gamedev software engineering, but we had one voluntary class about Ethical Hacking.

I just asked my professor if he can reffer me to someone in the field, followed OWASP Web App Testing guide to the letter when testing the interview homework website, and landed the job without much prior experience (I did attend a few CTF competitions, though).

Just following the checklist in OWASP testing guide made my results comparable to, or even better to some of my colleagues, and I've slowly learned the rest (especially internal domain pentesting) from our internal documentation or shadowing seniors during pentests, and simply being interrested in the field, having initiative and looking up new tools and exploits eventually got me to a Red Team Lead role (not a very good RT, though, but it did improve eventually).

The pay was pretty good compared to what's usuall here in Czech, too. I could comfortably pay rent and get by even with part-time, during college.

[–] RamblingPanda@lemmynsfw.com 19 points 4 days ago (2 children)

I've never been a black hat, so I'll never be a white one. Maybe a white diaper. But I think I've missed out, I would be very interested in this stuff, but nah, I'm too old for this shit.

[–] maniclucky@lemmy.world 22 points 4 days ago (3 children)

Taking a network fundamentals class right now and the last part of the module was network security, which I thought would be interesting. I couldn't focus on it at all. It's weird when you realize that something you thought would be cool can't hold your focus.

[–] FlexibleToast@lemmy.world 18 points 4 days ago

It's one of those things that sounds cool and fun, then you realize it's mostly just paper work and reading logs.

[–] owenfromcanada@lemmy.world 10 points 4 days ago (1 children)

I generally blame the instructors when that happens. I've taken classes on the most menial subjects that were great because the instructor was great. Almost anything can be enjoyable to learn if you have the right teacher.

[–] maniclucky@lemmy.world 4 points 4 days ago (1 children)

I enjoyed all the other stuff in the module and he did fine. Extra points for being online learning and being able to speed up the lecture to keep my ADHD happy. Just that one was pretty bluh.

[–] BuboScandiacus@mander.xyz 1 points 3 days ago (1 children)

Can you share a link please ?

[–] maniclucky@lemmy.world 2 points 3 days ago (1 children)

Sure. It's on Coursera

[–] BuboScandiacus@mander.xyz 2 points 3 days ago

[–] RamblingPanda@lemmynsfw.com 5 points 4 days ago

It's probably more fun when you're at school, shutting the teacher's computer down.

[–] BaroqueInMind@lemmy.one 0 points 4 days ago

Same

[–] libra00@lemmy.world 18 points 4 days ago

Heh, I came by my abortive (due to disability) cybersecurity career honest - I never really did much hacking, but I built and maintained networks for years and sorta just picked it up. Course it helps that I'd had a couple friends for years before I got into it who had been in the business a long time (one was the network security head for a Tier 2 ISP that covered most of the American Southwest, and the other was on the penetration-testing red team at a US government national laboratory) and liked to talk shop.

[–] kreskin@lemmy.world 12 points 3 days ago (1 children)

All the security folks I've worked with have seemed like posers who want to be seen as hackers but can do minor ui tricks at best.

[–] Thebeardedsinglemalt@lemmy.world 3 points 2 days ago

Our last cyber security expert just kinda sat back and let the director do all the work and blindly accepted every single recommendation of Fortified...even the stuff that contradicted itself.

[–] Scoopta@programming.dev 6 points 4 days ago

The hand on the kids head is more terrifying than comforting, WTF

[–] khannie@lemmy.world 4 points 4 days ago

collapsed inline media

[–] Eddbopkins@lemmy.world 3 points 3 days ago (1 children)

Yeah sorry, but I don't get it. Sorry

[–] Ziglin@lemmy.world 2 points 1 day ago (1 children)

I think the message is that many cyber security experts indeed gained their expertise by doing not so legal things when they were younger.

[–] Eddbopkins@lemmy.world 1 points 22 hours ago* (last edited 22 hours ago) (1 children)

i understand that. i dont understand the context of the picture meme. i just dont know the story behind a crouching teacher and a uniformed picture of her or who ever that is.

[–] Eddbopkins@lemmy.world 1 points 22 hours ago

upon further look at the uniformed picture i see feet dangling, im slowly piecing it together.

[–] henfredemars@infosec.pub 3 points 4 days ago

I’m in this photo and I don’t like it.