kennedy

cross-posted from: https://lemmy.dbzer0.com/post/52088358

I know the market is ass rn, I've been looking for a job since I graduated in November of last year with no luck. Every application I get a response like "you are great, your skills are great, you meet every criteria but we found someone better". I recently decided to start replying to emails to ask why I wasn't picked (I reply only to emails that aren't from no-reply or if the say I can ask for feedback). So far I have not even received one reply. Am I wasting my time??? I feel like it's just from automated systems and they don't even look at it. Is everything literally a ghost job?? If you have ever asked for feedback have you gotten anything useful from it?

I am currently unemployed (been looking for almost a year with no luck) instead of doing nothing I thought I might learn something new. I work on some coding projects for fun in the meantime because I love doing it. I went to school for computer engineering but I've always been interested in cybersecurity/infoSec I think its a good skill to have. I've been looking at courses that give you certification but I have no money (see unemployment). I've been mostly self taught anyways so I was wondering if you guys have come across any good books on the subject. A book you used as part of a university course you took or a book that helped you. I also feel like those courses with certificates barely teach you anything (especially the free ones). They feel like a bunch of checklists. I want to learn so I feel like a good book will help.

I have a part time job right now so I'm thinking I learn by myself then get enough money to get "officially certified" and move into cybersecurity cause software engineering only isn't doing me any good in this economy.

cross-posted from: https://lemmy.dbzer0.com/post/51040952

I'm moving away from using products by big tech and I recently started using EnteAuth for 2FA. Today I got an email from them saying that they received money as part of GitHub's secure open source fund. Maybe I'm just being paranoid but I do not like this at all. Microsoft is not altruistic I don't care what anyone says. There has to be an ulterior motive for this. With even the recent news that github won't be so independent anymore and they're getting folded into the Microsoft umbrella this has me worried. But let's be real github was never independent just look at copilot being forced down everyone's throat. That's why I personally stopped using it.

According to the fund

Throughout this program, each project receives $10,000 USD via GitHub Sponsors (which breaks down to $6,000 USD during the sprint and $2,000 USD at 6- and 12-month security check-ins). Projects are also invited to a new security focused community, and office hours with the GitHub Security Lab, that they can take advantage of during the full 12 months. They also receive security resources to immediately implement in their project and Azure credits for cloud infrastructure.

Those sponsors include

Alfred P. Sloan Foundation, American Express, Chainguard, Datadog, Herodevs, Kraken, Mayfield, Microsoft, Shopify, Stripe, Superbloom, Vercel, Zerodha, 1Password

Projects that are part of this even include nodejs, nvm, log4j, JUnit, and Matplotlib. Taking cybersecurity seriously is great but this just seems like a way to sucker them into their ecosystem to get them dependent on their products. Like I said maybe I'm being paranoid but I wouldn't be surprise when Microsoft suddenly buys these projects and we lose what made them so great.