check out: http://convocourses.com
0:00 ISSO Therapy Session
14:38 Things to read for Risk Management Framework
23:37 How to Get a Security Clearance?
33:01 Do I Need a Prestigious University for Cybersecurity?
43:24 Why I don’t take calls as a mentor?
44:57 Advice for a new SCA (Security Control Assessor)
49:31 Cybersecurity Resume Tips for Security jobs
Can you use lab work from college on your resume?
You should not lie on your resume, but you can put lab work on your resume honestly and effectively. Lets say you created Cisco ASA firewalls in a lab in school. You could say that you are “familiar” with it the Cisco ASA firewalls. Whether say you are “familiar” or “proficient” what is really important is that you can back up whatever you say on your resume.
Sign up for free courses!
check us out here:
Podcasts / downloadable mp3:
As an ISSO you are not Atlas holding up the the security of the entire organization. Instead you are part of a larger process. The risk management process and the organization as a whole abides by the process so the risk is managed by all. It is very stressful to try to take on all the responsibility and risk of the entire organization. It is also impossible for one person to absorb all that risk and run a successful organization with a great degree of confidence. The ISSO must be apart of the team and support the team.
I often get questions from other professionals on how they can get into Cybersecurity. There are a few things that you can do to start. For one thing, start where you are. If you work in a company ask the resident IT guy what the career is like. Another thing to consider is IT adjacent careers that are not as technical such as program management.
Today’s podcast talks about updates to the RMF ISSO Security Controls Documentation courses is going to be updated soon: https://securitycompliance.thinkific.com/courses/rmf-isso-security-controls-documentation (Configuration management security controls are being added).
The price will increase soon so the time to buy is NOW (11/16/2020)!
We go into what IT certification you need for Information System Security Work (#ISSO). We show him a breakdown of the DoD 8140 which talks about cyber workforce requirements.
We talk about getting Splunk and other internal training at jobs.
Someone asked, “what is the future of Cybersecurity? and what certifications do I think will be needed in the future?
Cloud technology. Cloud tech will be as important as knowing basic networking.
We talk about FedRAMP and give an overview of what it is about.
We answer the question “what is the career path to cybersecurity analyst?”
We also talk about the importance of protecting your privacy. Search yourself on http://spokeo.com
We also discuss bein in the IT office and avoiding politics and other sensitive topics.