It is amusing to see the expression on someone's face when you "solve" one of their problems in minutes. Just don't tell them that it took you days a few years ago when you first ran into it... They have to be REAL creative to come up with a mistake I haven't already made...
Anyway, see http://www.computerworld.com/cwi/story/0,1199,NAV65-663_STO55920,00.html "How to Break Into The Field of Security" V/R Jim Jack McCarthy wrote: > > This is directed towards all who work or have working knowledge and experience in >the Internet/network security field. I am a firm believer in the rule, "Learn from >the mistakes of others. You wont live long enough to make all of them yourself" >for that is the purpose of this post to learn from those who have gone through this >before or who are currently going through it whatever that 'it' may be. > > Basic questions/thoughts: > > What would be the best way for someone to go about laying a solid foundation of >knowledge in the Internet/network security field - (specifically areas like intrusion >detection, scanning, firewalls, forensics, incident response and "The Honeynet >Project" like topics.) For example, if you had the ability to go back and learn it >again (do it all over again), how would you go about it? How would you do it >differently? In what order would you have studied the different >subjects/technologies? Does learning one subject/topic hinge on the ability to learn >another? If so, what would you learn/study first? Programming languages? Which >ones? In what order? What did you do to attain the knowledge you have? Would you >have done it differently? If so, how and why? > > For someone who already works in the IT field, has a strong interest in security and >wants to seriously pursue this field, what are the steps they should take in order to >get going on the right path the solid path, the one with no shortcuts? I am >currently reading everything I can get my hands on (picked up 'Know Your Enemy' the >other day), just want to make sure I lay a solid foundation to build upon. > > Grateful for the guidance, > > -Jack -- James W. Meritt CISSP, CISA Booz | Allen | Hamilton phone: (410) 684-6566