3. My MVPs: PenTester; Network Security Architect; Database Security Guy; LDAP guy. You will never ever find someone who does one of those things who is unemployed. They are near IMPOSSIBLE to find. Usually have to pay an obscene amount to get them from other companies.
Beef
If you are looking to move into the InfoSec arena, I suggest you talk with Jeff Combs: http://www.combssearch.com/ he's the top headhunter in the Infosec world. He knows everyone in the industry (I'm really not kidding), and everyone knows him. He can give you the lowdown on where the trends are moving and how to best place yourself for a position.
-Beef
Just thought I'd give you guys an update. In November I finally obtained my Certified Internal Auditor designation. I can't bask in the glory long, I'm registering to go for the CISA in June.
I've started reaching out to the InfoSec professionals that I know, trying to map out a career transition to Information Security and had the conversation with the boss. She's totally onboard and have her full support. Now I just really need to figure out do I want to go with the Information Security Officer route or the Infosec Assurance Engineer / Analyst route.
I enjoy the technical aspects of running the tools but my degree in business administration suggests a better fit with the Enterprise Risk Information Security aspect. I'll probably hold off making a decision until I pass the CISA and understand more about the different specializations within the field. In February I'll have 5 years of Internal Audit experience using a risk based system integration approach.
p.s.
Hello to all the InfoSec pro's that have posted in the thread over the last year!
Isn't waiting for that CISSP e-mail the worst? I was almost certain I failed when I walked out. Worst exam ever in my opinion.
We seem to have similar backgrounds.
<--- IT Auditor, CISA and just got my CISSP pass email today!
Thanks for the tips guys. I just ordered the AIO SH book 5th ed.
I also joined cccuure.org- this is a great resource.
Thanks again.
Planning to take CISSP exam sometime late this year or early next year.
I hold a BS in Comp. Sci and currently pursing MS in Information Assurance.