Getting an Information Security Job For Dummies®
Getting an Information Security Job For Dummies®
Published by: John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030-5774, www.wiley.com
Copyright © 2015 by John Wiley & Sons, Inc., Hoboken, New Jersey
Media and software compilation copyright © 2015 by John Wiley & Sons, Inc. All rights reserved.
Published simultaneously in Canada.
No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without the prior written permission of the Publisher. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permissions.
Trademarks: Wiley, For Dummies, the Dummies Man logo, Dummies.com, Making Everything Easier, and related trade dress are trademarks or registered trademarks of John Wiley & Sons, Inc. and may not be used without written permission. All other trademarks are the property of their respective owners. John Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.
LIMIT OF LIABILITY/DISCLAIMER OF WARRANTY: THE PUBLISHER AND THE AUTHOR MAKE NO REPRESENTATIONS OR WARRANTIES WITH RESPECT TO THE ACCURACY OR COMPLETENESS OF THE CONTENTS OF THIS WORK AND SPECIFICALLY DISCLAIM ALL WARRANTIES, INCLUDING WITHOUT LIMITATION WARRANTIES OF FITNESS FOR A PARTICULAR PURPOSE. NO WARRANTY MAY BE CREATED OR EXTENDED BY SALES OR PROMOTIONAL MATERIALS. THE ADVICE AND STRATEGIES CONTAINED HEREIN MAY NOT BE SUITABLE FOR EVERY SITUATION. THIS WORK IS SOLD WITH THE UNDERSTANDING THAT THE PUBLISHER IS NOT ENGAGED IN RENDERING LEGAL, ACCOUNTING, OR OTHER PROFESSIONAL SERVICES. IF PROFESSIONAL ASSISTANCE IS REQUIRED, THE SERVICES OF A COMPETENT PROFESSIONAL PERSON SHOULD BE SOUGHT. NEITHER THE PUBLISHER NOR THE AUTHOR SHALL BE LIABLE FOR DAMAGES ARISING HEREFROM. THE FACT THAT AN ORGANIZATION OR WEBSITE IS REFERRED TO IN THIS WORK AS A CITATION AND/OR A POTENTIAL SOURCE OF FURTHER INFORMATION DOES NOT MEAN THAT THE AUTHOR OR THE PUBLISHER ENDORSES THE INFORMATION THE ORGANIZATION OR WEBSITE MAY PROVIDE OR RECOMMENDATIONS IT MAY MAKE. FURTHER, READERS SHOULD BE AWARE THAT INTERNET WEBSITES LISTED IN THIS WORK MAY HAVE CHANGED OR DISAPPEARED BETWEEN WHEN THIS WORK WAS WRITTEN AND WHEN IT IS READ.
For general information on our other products and services, please contact our Customer Care Department within the U.S. at 877-762-2974, outside the U.S. at 317-572-3993, or fax 317-572-4002. For technical support, please visit www.wiley.com/techsupport.
Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some material included with standard print versions of this book may not be included in e-books or in print-on-demand. If this book refers to media such as a CD or DVD that is not included in the version you purchased, you may download this material at http://booksupport.wiley.com. For more information about Wiley products, visit www.wiley.com.
Library of Congress Control Number: 2014954662
ISBN 978-1-119-00281-9 (pbk) 978-1-119-00284-0 (ebk); ISBN 978-1-119-00262-8 (ebk)
Getting an Information Security Job For Dummies®
Visit www.dummies.com/cheatsheet/gettinganinformationsecurityjob to view this book's cheat sheet.
Introduction
The information security (InfoSec) profession got its start decades ago, but it consisted of few people, mostly in military and other secret organizations. With the appearance of the Internet in the 1990s, organizations started to put information online, and the InfoSec profession became a little more popular. Fast-forward to the mid 2010s, with its big security breaches as well as new laws and regulations, and information security is one of the hottest professions around the world.
About This Book
There are more than enough books on information security, but far too few professionals to do the work. Until now, there was no clear guide to getting into the profession. Delivered in the same rich tradition of the Dummies series, Getting an Information Security Job For Dummies is that clear guide on planning your entry in information security, no matter where you are in your career today:
✓ If you're a student or recent graduate, you'll get real-life information on what it’s like in the information security profession.
✓ If you're an experienced IT professional, you'll understand how to make a lateral move into information security.
✓ If you're already getting your start in information security, you can chart your career path and decide what kind of an organization you may want to work in.
✓ If you're in the information security job market, you'll understand different types of information security jobs in different types of organizations.
✓ If you need to hire an information security professional, you'll find lots of information to help you focus on what kind of candidate you need and to better understand the people who are applying for your positions.
No matter why you’re reading this book, you can use it as a security career reference. Getting an Information Security Job For Dummies is full of insight from real information security professionals, in their own voices. You’ll begin to understand what the InfoSec profession is really like from professionals who have been going at it for years.
Foolish Assumptions
While writing this book, I’ve made some assumptions about you:
✓ You are curious about technology and how things work. Even if you're looking to get into the compliance or controls aspect of information security, it’s still important to have a healthy appreciation for how technology supports an organization.
✓ You dislike malware and the criminal organizations that create them. Even if you don’t yet understand how cybercriminals work, your conscience tells you that what they are doing is wrong, and you want to learn how to help organizations better defend themselves.
✓ You enjoy learning. My first clue: You are reading this book! Being in information security – or any branch of information technology – demands continuous learning. Security issues and technology itself change quite rapidly, and continuous learning is needed just to keep up!
✓ You like Dr. Who and his problem-solving capabilities, even if some of the scenarios he finds himself in are a little odd.
How am I doing so far? If all of my assumptions are right, you may be InfoSec material and ready to seriously consider a career in information security.
Icons Used in This Book
Throughout this book, you'll see icons in the left margin that call attention to information that’s worth noting. No smiley faces winking at you or any other cute little emoticons, but you’ll definitely want to take note! Here’s what to look for and what to expect.
Throughout the book, you’ll find stories and tips from information security professionals, in their own voices.
This icon identifies general information and core concepts