Видео

You’re very welcome!

Thanks for sharing. I agree, Larry is a great guy! I think he hung around Certification Station when I was there a few years ago.

@@cloudsecque I think the last time I seen Larry was probably when we presented at root66 (him doing his thing, me doing mine). But it was great times. As of late, I'm trying to get all of us together for a play date it's been too long lol

You’re welcome and good luck on your journey!

Absolutely! Start with the basics and learn fundamentals of networking, security and then cloud computing such as AWS, Azure or GCP.

Thank you!

Go for it! Nothing is stopping you from taking the exam. Suppose you don’t have the minimum five years of experience in any of the two domains. In that case, you won’t be awarded the CISSP certification and will be recognized as an Associate of ISC2 until you fulfill that requirement.

No problem!

It's not necessary to memorize the YAML structure for each Kubernetes object. Instead, focus on understanding the key concepts. Use the `--dry-run` and `-o yaml` commands to generate the YAML structure when needed during the exam. This will save you time and ensure accuracy. Good luck!

@@cloudsecque thanks. One more question, I’m taking the course of Mumshad. Have you seen how are their labs? Are they similar to the ones in the real exam?

I get where you're coming from. Having gone through the CISSP exam myself, I found that while some questions seemed irrelevant, they actually helped build a solid foundation in cybersecurity. Understanding the history and authors of frameworks can give you deeper insights into their development and applications. The certification has significantly benefited my career, providing a comprehensive understanding that has proven invaluable in various situations.

Hi Sukhdeep, For the ISC2 CISSP exam, you need at least five years of work experience in two or more of the eight domains of the CISSP Common Body of Knowledge (CBK). If you don't have the required experience, you can still take the exam and become an Associate of ISC2. To book the exam, visit the ISC2 website, create an account, and follow their registration process. Good luck!

Thanks! ❤️

Here's my advice to help you transition into cloud security: 1. Start with AWS Certified Solutions Architect - Associate: This certification will give you a solid foundation in AWS services, which is essential for cloud security roles. 2. Next, pursue AWS Certified Security - Specialty: This will build on your knowledge and focus specifically on securing AWS environments. 3. Consider SOC Experience (Blue Team): While not required, working in a Security Operations Center (SOC) can provide valuable hands-on experience in threat detection and incident response. 4. CompTIA Security+: Since you already have knowledge from other courses, you can skip this certification for now and focus on AWS certifications. To save money, look for free online resources and study guides. Joining study groups or forums can also help you find support and study materials.

That’s wonderful news! Congrats!

Congratulations on passing on your first attempt!

Thank you. 😁

Yes, you can certainly prepare using just the AWS Training and Certification materials from AWS. However, some people might find learning from other resources better and more engaging for them, it depends on their learning style.

Oh darn! Now I can’t quit my day job XP

You’re welcome and thanks for watching my video! Good luck on your journey!

Thanks for the advise!

Thanks for the advice and for watching the video!

Only 90% of people announce it that way. How petty you are to make this comment.

@@DOOMSTARKS-ib4fl BS, i never heard Anyone pronounce it as SISSP before

@@user-ym7ss6xb3j I've never not heard it called that...does it really matter though?

@@DOOMSTARKS-ib4fl show me ONE other youtube video where its called SISSP and you are right

Thanks for watching the video. Nowadays as k8s and automation is becoming mainstream, I recommend learning k8s and terraform to stay competitive in the job market.

The CISSP exam from ISC2 is exclusively available at Pearson VUE testing centers and cannot be taken remotely. For those in Indonesia, you'll likely need to visit a center in Jakarta, as this is a common location for the exam. To schedule and find specific locations in Indonesia, please check the ISC2 website ( www.isc2.org/exams/schedule-exam ). Here's a search page for the testing locations. Type indonesia to find out where you can take the exam: wsr.pearsonvue.com/testtaker/find/testcenter/ISC2?locale=en_US Best of luck with your exam! 🌟

@@cloudsecque Thank's a lot !!! 😊😊

Penetration testing is important for keeping cloud systems safe. It finds weak spots before hackers can, follows security rules, and makes cloud security better. Knowing how to do this testing helps protect against online attacks. However, having said that, it’s not a requirement to get started but it will certainly help you become better at defending if you know how to think like a hacker.

Your journey sounds incredible! It's so cool that you switched to Sec-Ops and are loving it. Don't worry about those certifications holding you back - you have the skills and the drive to make it to that future department lead position. Best of luck with your CISSP journey, and remember to celebrate every milestone!

everyone in sec laughs about the cissp but yes everyone gets it to pass the HR-checks. lol

Absolutely, transitioning to a cloud security engineer from your current SOC analyst role is definitely on the cards. Your experience in a SOC is a solid foundation since you're already tuned into the security landscape. Cloud certifications? That's a great step! They show you're serious about this and have the knowledge to back it up. To shift into a cloud security role, you might want to add a few more specific certs to your list, like the Certified Cloud Security Professional (CCSP) or maybe something specialized from AWS or Azure, if you haven't got those already. Hands-on experience is key, so try to weave in cloud security tasks into your current job or set up some personal projects. This practical experience is golden. Also, keep learning. Cloud security is a fast-moving field, and staying on top of the latest is a must. Networking can be a game-changer too. Chat with people who are already doing the job and pick their brains. They might even point you to opportunities. When you're ready to make the move, tailor your resume to highlight how your SOC skills translate into cloud security. And for interviews, be ready to chat about how you can leverage your SOC experience in a cloud environment. So, yes, with the right steps, your goal is well within reach!

Hey there! With a decade in IT under your belt, you've definitely got a solid foundation. The CISSP is quite advanced and assumes a broad understanding of IT security. While you might be able to jump straight into CISSP prep, it wouldn't hurt to brush up on the latest in security trends and practices. You could check out resources on areas covered in the CISSP, just to make sure you're up to speed. Beginner certs like Security+ could be helpful, but given your experience, they might not be necessary. The key is to feel confident in the CISSP domains. Best of luck on your certification journey!

Absolutely, covering the vast expanse of web security in just 6 weeks is indeed a challenge! It's important to recognize that such a short time frame might only allow for a foundational understanding rather than in-depth expertise. But every journey starts with a single step, and the tips in the video are designed to give you a solid starting point. Remember, the key is consistent study and practical application.

Depends on your background. I have a CISSP and years of Sys admin etc in my back ground with no Aws work history ever and was a breeze. If you coming in fresh with 0 experience will be an uphill climb.

Other certs may benefit like mcse etc and other security certs if you find this difficult then your background reflects that and you may consider another was certification because that will also apply for jobs.

Thanks, will do!

I believe I have updated that in the comments. Perhaps it got unpinned for some reason. I will re-pin it.

The exam results will be released to you after 24 hours. There’s no exception. You just need to be patient and wait.

I’m happy to hear this video was helpful!

@@cloudsecque You're right on time for me. I'm going to take notes and execute your approach...

That’s awesome! This was the only AWS certification I did because it was inline with my security path. Thank you for sharing your experience!

Yea it’s pretty much SA work with security.

I have not read that book. I’ve only used the materials that I’ve mentioned in this video.

Every individual's journey towards certification is unique, shaped by their experiences and aspirations. While I can share insights, the path you choose must resonate with your goals. For a comprehensive perspective, I'd recommend exploring the Security Certification Roadmap: pauljerimy.com/security-certification-roadmap/

Here's the full video: ruclips.net/video/7HUQ9iWM1Lg/видео.html

Hey, Joe Joe! With over a quarter-century in the tech realm, I've garnered a wealth of experience, complemented by certifications like CISSP, OSCP, CKA, and AWS Security. Yet, for me, these certifications affirm my hands-on expertise more than mere accolades. My journey has seen me embrace roles from Cyber Security Analyst to Security Engineering Manager and beyond. However, I've always believed that the work's essence, not the title, truly matters. If you're keen to delve deeper into my professional odyssey, I invite you to connect on LinkedIn: www.linkedin.com/in/cloudsecque

Hey Joe! I took a different route from traditional uni, diving straight into hands-on experience. If you're looking for flexibility and affordability, check out WGU ( www.wgu.edu/ ). It's self-paced, offers IT & cybersecurity degrees, and is gaining traction. Might be worth a look! 👍

@@cloudsecque yea i have looked at WGU way before but they only accept people in U.S. So by saying hands on you went straight into working getting experience without any prior certs or education?

@@joejoe2452 Reflecting on my journey over the past 25 years, I began in IT before venturing into the realms of security. Each individual's path is unique, and my transition from IT to devops, cloud, and eventually security, provided me with a distinctive vantage point. I'd genuinely like to understand more about your background and aspirations. Let's take this conversation to a platform where we can delve deeper. Please connect with me on LinkedIn ( www.linkedin.com/in/cloudsecque ). By understanding your past experiences and goals, I can offer more tailored advice. Looking forward to our continued dialogue.

Thank you! Yes, I just realized the recent video the volume was abit high. Thank you so much for the feedback. I appreciate it!

Thank you!!

You can do it!

Thanks a ton!

You know, when it comes to studying for something as intense as the CISSP, I've always leaned towards physical books. There's just something about highlighting and scribbling notes that helps the info stick. Plus, no screen means fewer distractions and less eye strain. But hey, if you're always on the move or prefer digital, ebooks can be super convenient. At the end of the day, it's all about what feels right for you.

Impressive! I gained valuable knowledge from it, particularly about Bell-LaPadula and Biba.

I'm not. Feel free to connect with me on LinkedIn for more cybersecurity tips and news. I hope to continue to post new videos soon! Thanks for watching my videos :) www.linkedin.com/in/cloudsecque/

Thanks for reply quê. I’m doing cybersecurity Bootcamp right now.

Hi! The CISSP exam can only be taken at Pearson VUE testing centers. They did a trial for online testing but found it didn't meet their security and integrity standards. So, you can't take it online. Hope that helps!

thanks @cloudsecque and one more question please if you don't mind i heard that CISSP certification requires 5 years of experience in cybersecurity field, is that correct ?

To qualify for CISSP, you need 5 years of full-time work experience in at least two of the CISSP's 8 domains. Your job title doesn't need to specify "security". For example, roles like IT Systems Administrator or Help Desk Analyst that involve managing account access or device provisioning count towards this experience. This can align with domains like Identity and Access Management (IAM) and Asset Security. The 8 domains are: 1. Security and Risk Management 2. Asset Security 3. Security Architecture and Engineering 4. Communication and Network Security 5. Identity and Access Management (IAM) 6. Security Assessment and Testing 7. Security Operations 8. Software Development Security.

@@cloudsecque thank you

Glad to hear! Good luck on your studies!

Hi there! I'm glad you enjoy the videos. You raise a great question - in my opinion, it is certainly possible to become a CISO without a computer science degree if you have substantial relevant experience and certifications like the CISSP. The CISO role is ultimately about understanding cyber risks and leading security strategy, which can be gained through deep hands-on work and continuous learning. That said, a degree doesn't hurt, especially early in your career, as it provides foundational knowledge. But it's not the only path forward. The keys are immersing yourself in the field, pursuing certifications, taking on leadership opportunities, and constantly staying up-to-date on the latest cyber trends and technologies. The CISO role should not be the end goal, but a step along the path as you continue gaining new skills. Information security is a quickly evolving field that requires lifelong learning. Focus on expanding your capabilities, networking and leading teams. With the right mix of experience, certs, communication skills and business acumen, you can absolutely reach that CISO seat without a CS degree. Keep pushing yourself! The opportunities are there for the taking.

@@cloudsecque thank you my friend! I'm actually just starting out. I've done a 3 months course that covers Phyton, CCNA and Csec basics. Now I'm looking forward to get my CEH V12 exam as well as a cissp training (without the exam). These 2 trainings are within a post graduate program, it seems like a hard training to be only 6/12 months.

I understand you were expecting preparation time for the exam, but unfortunately that is not allowed. The full exam time allotted includes any preparation. Please note the updated video description - you will not have access to bookmarks during the exam. Focus your preparation on becoming fast and proficient with the commands, especially imperative commands. Let me know if you have any other questions!