Infosec Jobs - Macpeters/resume GitHub Wiki

Infosec Jobs

Skills needed

  • Networking. Study for CCNA (vendor specific - cisco routers, etc, more in depth and difficult. CBT Nuggets training), Comptia Network (vendor neutral). Certification is not necessary, but the skills are.
  • General Cybersecurity knowledge
    • malware and attacks (types of attacks, viruses, worms, man in the middle)
    • preventative measures (antivirus, firewalls, IDS (intrusion detection system), IPS (intrusion prevention systen) - how they work
    • hackers, hacking methodology and software - who are they, what steps they take, what tools they use
    • hacking software (wireshark, Nmap, Cain & Abel)
    • social media, online identity, privacy, anonymity
  • Programming - good for some specializations
    • python
  • Soft Skills - presentation, analystical mind, ability to work with a team, networking

Job Types

Security Analyst/Infosec Analyst

  • entry level, no real skills specialty - general knowledge required
  • $45-70,000 US/year
  • Comptia Security Certification, ISC Systems Security Certified Practicioner, Knowledge of networks, firewals, IDS, IPS, Antivirus, Network+ or CCNA training
  • promote to Security Architect
  • maintain data and monitor security access
  • recommend and install appropriate tools and countermeasures
  • manage network, intrusion detection and prevention systems
  • apply patches, upgrade security measures
  • train fellow employees in security awareness and procedures

Security Architect

  • senior position, head of a security analyst team - more managerial less technical
  • $85 - 143,000 US/year
  • Security Analyst Skills, experience, CISM, PMP or other managerial certification
  • promotion to CISO (Chief Information Security Officer)
  • manage security team
  • prepare budget
  • spearhead audits and training
  • involved in hiring security analysts
  • define and create corporate security policies


Penetration Tester / Certified Ethical Hacker

  • $44-117,000 US/year
  • hardcore technical skills, deep understanding of windows and linux OS, strong knowlege of networking tools (Nmap, wireshark, Nessus, Metasploit framework, etc, programming, Comptia Security+, CEH & CISSP certifications
  • paid to hack - look for vulnerabilities
  • promotion to Security Architecht or Consultant
  • perform penetration tests against security systems and web based applications
  • conduct physical security assessments
  • use social engineering tactics to uncover security loopholes
  • provide feedback and recommendations to company


Forensic Analyst

  • $55-119,000 US/year
  • Security Analyst skills, cryptography, forensic software applications (FTK, Helix), backup and archive technologies, evidence handling procedures, CEH, GIAC Certification (CFE, CFA) Certified Computer Forensics Examiner (CCFE)
  • digital detective involved with tracing cyber crime
  • mostly employed by police, law enforcement, government
  • work is used in court\
  • conduct data breach investigations
  • recover and examine lost data from computers
  • compile evidence for legal cases
  • provide testimony at court proceedings 


Cyber Security Manager/CISO

  • $180-400,000 US/year
  • CISSP, CISM certs, PMP, ITIL
  • work with upper level directly to determine company's security needs
  • requires experience and managerial skills