Six Skills You Need to Succeed in Cybersecurity

Finally, there’s these:

  • Convention SuperherosExamine security from a holistic view, including threat modeling, specifications, implementation, testing, and vulnerability assessment
  • Understand security issues associated with operating systems, networking, and virtualization software
  • Understand Web application security concepts and practices
  • Understand the architecture of systems and network including identifying the security controls in place and how they are used
  • Understand database weaknesses and security best practices
  • Advanced understanding of general information security concepts and principles, system architectures and development
  • Expert knowledge of software development security principles, concepts, and best practices
  • Ability to write tools to automate certain security tasks
  • Ability to do Systems and Network hardening
  • Organize and coordinate technical Vulnerability Assessments including systems and network vulnerability assessments, penetration testing, web application assessments, social engineering assessments, physical security assessments, wireless security assessments and implementing secure infrastructure solutions
  • Recommend and set the technical direction for managing security incidents
  • Maintain the integrity of process and approach, as well as controls, for the whole incident management process including the ability to coordinate and manage major/highly sensitive investigations with potential for business wide impact/reputational damage
  • Be able to understand and forensically show how attacks from the Internet are done

Go back to the original post.

Pages: 1 2 3 4 5 6


8 Responses to “Six Skills You Need to Succeed in Cybersecurity”

March 03, 2012 at 6:45 am, bob said:

Not a comment but a question. Where can I have a good training on this field?


March 03, 2012 at 1:47 pm, John Zavgren said:

Excellent article. I agree with the author’s attitude about certification. I’ve taught courses (cryptography, Internet security, defensive coding practices, etc.) that have enabled my students to pass the CISSP examination. But, I’ve never seriously considered taking it, because it costs too much and the certification isn’t sufficient for professional competence.

I’ve seen a lot of job postings over the years that emphasize certification. I’m not sure that the potential employers really understand anything about security. One telecommunications company, who’s recruiter (a friend of mine) contacted me, merely wanted to fill a position for the lowest possible salary. The recruiter leveled with me: the executives of the company merely wanted someone to point to when the issue of security came up. “Look guys, we’re doing the best job with the best people”. I see all too much of this.


March 03, 2012 at 3:05 pm, Thomas W Thompson said:

I have 25 + years in IT. I hve been labelized as a PM generalist. I need help to take the next step in Cybersecurity. PLEASE HELP ME.


May 11, 2012 at 12:23 pm, Latrese said:

I would like to become marketable for employment in the wireless security sector. What type of education/certifications should I persue. I have Cisco CCNA and experience in LAN/WLAN Networking and Mobile Platforms


December 01, 2015 at 4:38 am, John Doe The 1337 said:

I have just started my Cyber Security degree, and it’s no joke. It’s my first year, and I just don’t get coding, it’s frustrating me specifically coding in .bash (Perl, C, C++, Python). Is it something that I will eventually get through just making simple scripts or shall I rethink my degree choice? I understand networking and VPN’s, hardware and software (linux OS’s, MS, Apple).

Thank you sir(s) and ma’am(s),


December 05, 2015 at 11:31 pm, sam said:

Many areas to cover… remember how to eat an elephant, one bite at a time!! I’m working on my Bachelor’s in Cybersecurity, and its a great challenge, my professor stresses generalism, knowledge of many things. But I wouldn’t trade it for anything, the greatest challenge in the world.


January 06, 2016 at 5:45 am, Myra said:


I just recently completed my CyberSecurity degree
and I experienced those same frustrations you are describing.

In short, it is imperative that an InfoSec (information security/cyber security) professional have the ability to *detect* and mitigate threats, risks and vulneralbilities in informational resources.

A popular technique of cyber criminals is hacking informational resources via loop holes/back doors in computer programs. Furthermore, an InfoSec professional can mitigate/respond to /eliminate *some* incidents/threats/risks via writing code.

That being said, to be an effective cybersecurity professional, understanding computer programming and the associated risks and vulnerabilities is very important. Your professors should have explained this if he/she is “any good”

Good Luck and hang in there!


February 10, 2016 at 8:45 am, Tati said:

If anyone needs training, offers a bunch of training courses for free. They have CISSP, Cisco CCNA, PMP, Ethical Hacking, CompTIA Security+, and a bunch of other stuff that might help you with advancing your career in Cyber Security.

There’s also Code academy for programming – Just depends on what you’re looking for.


Post a Comment

Your email address will not be published.