Hello, it sounds great honestly. The SC-900 is not really must have in my opinion. Besides compliance you are not learning anything new, but it will be a little bit easier to understand AZ-500 material and pass the exam. Just a small hint, try to focus your projects more on AZ-500 objectives rather than Analyst Cert or even better combine them across all your certs. Could be for example deploying Azure policy from Github repository via Defender for Cloud. github.com/Azure/Microsoft-Defender-for-Cloud/tree/main/Labs
For someone aiming to enter the field of security, the SC-900 certification is more relevant as it focuses specifically on security, compliance, and identity fundamentals in Microsoft environments. This said, you need to understand the general cloud concepts regardless of your role in Cloud. You need to be familiar with the technologies and services that underpin cloud platforms, as this foundational knowledge is crucial for implementing and managing security effectively.
Basic understanding is sufficient. That means get familiar with variables, loops, data structures, if statements, files, maybe functions. This will help you understand automation with tools such as Terraform faster.
I just finished masters in Information Security I feel like I have good understanding of Networking, Cryptography and Security concepts, but I am at medior position as Java Quality Engineer. I dont want to jump down in seniority and take a hit in my salary/"career time", how would you go about this ? Should I just get some more advanced AWS certificates (security focused) and try to jump onto Medior position in Cloud Security Engineer ?
Hello Tonny, first of all congratulations on finishing masters in Information Security! That's awesome! I have personally finished my master's degree while working as well and it's not easy task. I completely understand your dilemma. Honestly I would leverage your current role and jumped into senior position in cloud security. I think your best shot, given your knowledge and expertise is DevSecOps. Single certification is plenty and rather focus on hands on projects. There are plenty of opportunities when it comes to DevSecOps. First though, look into the job descriptions for such role, if it's something that would be interesting to you. This role has different seniority with DevSecOps principal architects earning up to 300 000$ a Year.
I think the problem with this comparison is they aren’t apples to apples. The first CompTIA cert you get is always going to be the hardest and take more time until you learn the study program you need to ace their exams quickly. Same goes for MS Azure certs. And if you wait until the end to start actually learning code and how to build stuff in the cloud, that will be an entirely different learning curve as well as it’s completely unlike studying for exams. Still, I 100% agree you should put as much time as you can into studying and practicing these things at the expense of everything else, including having an actual IT job. That will slow you down immensely and narrow your focus needlessly when you could b learning rapidly absorbing all kinds of new stuff like this. I’d say more realistically a year and a half assuming you can avoid having to get a full time professional job to support yourself in the meantime. You will have plenty of time to worry about how to meet deadlines, manage stress, and keep everyone else happy for the rest of your career. Get the foundation right will you still have the freedom to do so.
Hi, it's not necessary, but there is a huge overlap. You will use about 50% - 60% of what you have learned in AZ-104 in your AZ-500. It will significantly help you to understand AZ-500 and ace it without any problems.
That's a very good question. The time required for each step can vary based on individual learning pace, prior experience and the amount of time you can dedicate to studying. If we talking full time (to me it's 8 hours). 1. Foundation 1-3 months 2. Networking 1-3 months 3. Linux 1-2 months 4. Security 2-4 months 5. Cloud 1-3 months 6. Coding 2-4 weeks 7. Automation and Deployment 1-2 months 8. Cloud Projects 1-2 months If you already have some knowledge and you fully dedicate all your time studying, it could be possible to do it in 6 months.
@@Cyber-Checktoo optimistic to be well prepared for certification. Maybe someone very smart could achive It, but if you really want to learn all those stuff instead passing and exams with dumps 2 years atleast at minimum. Ofc, from 0 knowledge.
Huge pros for the Terraform certifications. It's one of the few, where you have actual hands on. That means people can't just cramp for the exam or learn from dumps, which is huge problem for certification industry. People have the certifications, but they lack the experience and skills to apply them. That's why I'm huge fan of projects. Terraform certification is very different in that regards. I really love it! Good luck on your journey!
Hello @studyfanclub2619 That's a brilliant questions. Let's assume you enjoy this field and you want to further develop in Cloud Computing and IoT. I would firstly look for companies in my local area, what jobs are opened and what technologies do they use. My country is Azure heavy, but overall AWS is more popular. You have to first do your own research. There might be also some companies you would (not) prefer to work for. Once you know the cloud provider, dive really deep and make a project related to IoT. Automate onboarding of IoT devices. aws.amazon.com/blogs/iot/how-to-automate-onboarding-of-iot-devices-to-aws-iot-core-at-scale-with-fleet-provisioning/ I would definitely make some home made lab with IoT devices. Even better would be to help some business integrate cloud and IoT to solve their problem. By having some practical project under your belt, you will differentiate from other graduates and gives you something to talk on interview.
Hello, I put time estimates for each step. Although it will depend on many factors such as amount of time studying and your learning pace. 1. Foundation 1-3 months 2. Networking 1-3 months 3. Linux 1-2 months 4. Security 2-4 months 5. Cloud 1-3 months 6. Coding 2-4 weeks 7. Automation and Deployment 1-2 months 8. Cloud Projects 1-2 months I would say if you already have prior step 5 experience with AZ-900, you only need practical skill in the cloud focused on security. I would say 2 - 4 months to have polish knowledge and some projects to talk on interview to get a job in cloud security.
@@Cyber-Check Hello Cyber Check. Appreciate your time and dedication to making these videos for us new people trying to enter the industry. One thing is that you said in the vid that one should go for AZ-500 after getting AZ-900. I hear from a lot of people who took AZ-500 that it's more advisable to take AZ-104. What's your take on this?
It will be always the case. This said it will be overall high in each country relative to average salary. The best paying country to my knowledge is Switzerland and you can find plenty of remote jobs. I know people from Czech Republic that took remote job in security from Switzerland companies. All you need is skill, knowledge and some practical experience under your belt. :)
I will keep an open eye on those and If I see excellent resources for AWS, I will let you know. This said, AWS has also official site to prepare for their exam. aws.amazon.com/certification/certification-prep/
Hi men, I want to get into the path of cloud security, I have knowledge of cybersecurity, hacking and programming with python, I have never worked in IT, my plan is to start with aws partitioner, and then continue with solution arch and then sec, do you think I could get into some work? My doubt, is if I have to do some SOC path (blue team) or directly I go for cloud, and the last doubt is if I need to do comptia sec+ (I have the knowledge from other courses, but I can't afford the price of the certification for the moment) or with aws partitioner is it ok? Thank you very much for your time.
Hello and sorry for the delay. First of all don't worry about comptia Security plus too much. Important is that you have the knowledge for the interview. You could also mention it, that you are studying comptia security plus certification. I didn't have the certification either, when I've started in cyber. With regards to AWS. It's still the most popular cloud provider. This said, if you have never worked in IT, it will be very difficult to get into cloud security. It's not exactly entry level job position. Still it's not impossible. You just want to stack as many "cards" on your side. If you don't have previous IT skills, definitely spend a lot of time connecting with professionals on LinkedIn and do a lot of projects related to cloud security. Your best shot is through referral
Thank you @tarrycapybara90 I don't think CCNA is necessary if you have Network+. You need networking basics and Network + is more than sufficient. With regards to Azure certifications. AZ-104 before attempting AZ-500, especially if you are new to Azure. Don't worry though. There is overlap. AZ-104 goes into security as well and you will use this knowledge in AZ-500 as well.
You can find the link on my discord channel. Here it is. knotty-session-8dc.notion.site/Cloud-Security-Engineer-RoadMap-e651c77151f14ab0bc44c90a80cf8979
It's available on my discord channel. Here is it for you knotty-session-8dc.notion.site/Cloud-Security-Engineer-RoadMap-e651c77151f14ab0bc44c90a80cf8979
It will very much depend on the country and company. I mean...if you worked for Nvidia couple of years and got some stocks, you are doing alright. 😁 unusualwhales.com/news/nvidias-nvda-employees-are-suddenly-so-rich-and-happy-that-the-companys-got-a-semi-retirement-problem
@@Cyber-Check that’s very cool. They’re lucky! I was just joking around because, in the United States at least, a 3 figure salary isn’t something that would attract anyone. That’s saying you would make less than a thousand U.S. dollars a year.
It will be always the case. This said it will be overall high in each country relative to average salary. The best paying country to my knowledge is Switzerland and you can find plenty of remote jobs. I know people from Czech Republic that took remote job in security from Switzerland companies. All you need is skill, knowledge and some practical experience under your belt. :)
What do you think of doing the Microsoft Cybersecurity Analyst Certification, then SC-900 , then 2 guided projects, and then AZ-500 Certification
Hello, it sounds great honestly. The SC-900 is not really must have in my opinion. Besides compliance you are not learning anything new, but it will be a little bit easier to understand AZ-500 material and pass the exam.
Just a small hint, try to focus your projects more on AZ-500 objectives rather than Analyst Cert or even better combine them across all your certs. Could be for example deploying Azure policy from Github repository via Defender for Cloud.
github.com/Azure/Microsoft-Defender-for-Cloud/tree/main/Labs
You should make a lab walkthrough series. This would be a big help for starters to be able to build different environments on the cloud.
That's very good suggestion. I do plan to make more hands on in the cloud related to security.
Big kudos for the fantastic cloud security roadmap video! Your insights are gold. Thanks a million!
Thank you! Glad you enjoyed it! :)
Az-900 or SC-900 for someone who wants to go into security isn’t AZ-900 just general azure?
For someone aiming to enter the field of security, the SC-900 certification is more relevant as it focuses specifically on security, compliance, and identity fundamentals in Microsoft environments.
This said, you need to understand the general cloud concepts regardless of your role in Cloud. You need to be familiar with the technologies and services that underpin cloud platforms, as this foundational knowledge is crucial for implementing and managing security effectively.
@@Cyber-CheckI’m going to do AZ-900 and then AZ-104 then -AZ-500.
Hate to be that guy. It’s AZ-104 and AZ-204. The AZ-103 and AZ-203 were retired in 2020.
Ouh, I must have used old picture. In my notes for the road map it's correct. Thanks though!
Simple and effective one. Good job Brother.
Thank you :)
Hi, what's the proficiency of programming skills required in the profile to begin as automation is needed to grow into this domain
Basic understanding is sufficient. That means get familiar with variables, loops, data structures, if statements, files, maybe functions. This will help you understand automation with tools such as Terraform faster.
@@Cyber-Check great.. thank you for updating
❤❤❤ Amazing roadmap, love from India brother
Thank you so much.
I just finished masters in Information Security I feel like I have good understanding of Networking, Cryptography and Security concepts, but I am at medior position as Java Quality Engineer. I dont want to jump down in seniority and take a hit in my salary/"career time", how would you go about this ? Should I just get some more advanced AWS certificates (security focused) and try to jump onto Medior position in Cloud Security Engineer ?
Hello Tonny, first of all congratulations on finishing masters in Information Security! That's awesome! I have personally finished my master's degree while working as well and it's not easy task.
I completely understand your dilemma. Honestly I would leverage your current role and jumped into senior position in cloud security.
I think your best shot, given your knowledge and expertise is DevSecOps. Single certification is plenty and rather focus on hands on projects. There are plenty of opportunities when it comes to DevSecOps.
First though, look into the job descriptions for such role, if it's something that would be interesting to you. This role has different seniority with DevSecOps principal architects earning up to 300 000$ a Year.
@@Cyber-Check Thank you for the reply. This is extremely helpful 🙏
Thank you.. this is a well put together, comprehensive video.. kudos!
Glad it was helpful!
Thanks for the video! Ideally how long do you think one can get all these certification using your road map
Would 8 months suffice?
I think 8 months is very reasonable if you put your effort into it. It will always depend how much time you are willing to spend on learning.
I think the problem with this comparison is they aren’t apples to apples. The first CompTIA cert you get is always going to be the hardest and take more time until you learn the study program you need to ace their exams quickly. Same goes for MS Azure certs. And if you wait until the end to start actually learning code and how to build stuff in the cloud, that will be an entirely different learning curve as well as it’s completely unlike studying for exams.
Still, I 100% agree you should put as much time as you can into studying and practicing these things at the expense of everything else, including having an actual IT job. That will slow you down immensely and narrow your focus needlessly when you could b learning rapidly absorbing all kinds of new stuff like this. I’d say more realistically a year and a half assuming you can avoid having to get a full time professional job to support yourself in the meantime. You will have plenty of time to worry about how to meet deadlines, manage stress, and keep everyone else happy for the rest of your career. Get the foundation right will you still have the freedom to do so.
Could you make a video going deeper into IasC and development?
I will put it on my list. Thank you for suggestion.
brother could you please suggest project bases on AWS instead of Azure.
You could get inspired from following workshops related to AWS and security
awssecworkshops.com/workshops/
Thank you seriously!
Glad you found it valuable. No problem @CyberBenne
Thank you for the video. Just one question: Do you think it is necessary to take AZ-104 before AZ-500 If I want to break into cloud Security?
Hi, it's not necessary, but there is a huge overlap. You will use about 50% - 60% of what you have learned in AZ-104 in your AZ-500. It will significantly help you to understand AZ-500 and ace it without any problems.
Best roadmap Thank You Brother❤
Thank you, I'm glad you like it. ❤
Hi, how long will it take to achieve it when studying full time?
That's a very good question. The time required for each step can vary based on individual learning pace, prior experience and the amount of time you can dedicate to studying. If we talking full time (to me it's 8 hours).
1. Foundation 1-3 months
2. Networking 1-3 months
3. Linux 1-2 months
4. Security 2-4 months
5. Cloud 1-3 months
6. Coding 2-4 weeks
7. Automation and Deployment 1-2 months
8. Cloud Projects 1-2 months
If you already have some knowledge and you fully dedicate all your time studying, it could be possible to do it in 6 months.
@@Cyber-Checktoo optimistic to be well prepared for certification. Maybe someone very smart could achive It, but if you really want to learn all those stuff instead passing and exams with dumps 2 years atleast at minimum. Ofc, from 0 knowledge.
got aws ccp, sec+, net+ , a+ any advice next thinking of taking terraform cert and Github actions cert before I start doing projects what do you think
Huge pros for the Terraform certifications. It's one of the few, where you have actual hands on. That means people can't just cramp for the exam or learn from dumps, which is huge problem for certification industry.
People have the certifications, but they lack the experience and skills to apply them. That's why I'm huge fan of projects. Terraform certification is very different in that regards. I really love it! Good luck on your journey!
I am persuing BCA (Cloud computing and IoT).
What I will do to get early job after completion of graduation.
Please give me a impact suggestion.
Hello @studyfanclub2619
That's a brilliant questions.
Let's assume you enjoy this field and you want to further develop in Cloud Computing and IoT. I would firstly look for companies in my local area, what jobs are opened and what technologies do they use.
My country is Azure heavy, but overall AWS is more popular. You have to first do your own research. There might be also some companies you would (not) prefer to work for.
Once you know the cloud provider, dive really deep and make a project related to IoT. Automate onboarding of IoT devices.
aws.amazon.com/blogs/iot/how-to-automate-onboarding-of-iot-devices-to-aws-iot-core-at-scale-with-fleet-provisioning/
I would definitely make some home made lab with IoT devices. Even better would be to help some business integrate cloud and IoT to solve their problem.
By having some practical project under your belt, you will differentiate from other graduates and gives you something to talk on interview.
How long would this process take for a person who already has az900 certification
Hello, I put time estimates for each step. Although it will depend on many factors such as amount of time studying and your learning pace.
1. Foundation 1-3 months
2. Networking 1-3 months
3. Linux 1-2 months
4. Security 2-4 months
5. Cloud 1-3 months
6. Coding 2-4 weeks
7. Automation and Deployment 1-2 months
8. Cloud Projects 1-2 months
I would say if you already have prior step 5 experience with AZ-900, you only need practical skill in the cloud focused on security. I would say 2 - 4 months to have polish knowledge and some projects to talk on interview to get a job in cloud security.
@@Cyber-Check Hello Cyber Check. Appreciate your time and dedication to making these videos for us new people trying to enter the industry. One thing is that you said in the vid that one should go for AZ-500 after getting AZ-900. I hear from a lot of people who took AZ-500 that it's more advisable to take AZ-104. What's your take on this?
Is country depend on this salary?
It will be always the case. This said it will be overall high in each country relative to average salary. The best paying country to my knowledge is Switzerland and you can find plenty of remote jobs. I know people from Czech Republic that took remote job in security from Switzerland companies. All you need is skill, knowledge and some practical experience under your belt. :)
Excellent information. Do you happen to have any recommended study resources for AWS certifications? I see you've covered Azure already.
I will keep an open eye on those and If I see excellent resources for AWS, I will let you know. This said, AWS has also official site to prepare for their exam.
aws.amazon.com/certification/certification-prep/
Hi men, I want to get into the path of cloud security, I have knowledge of cybersecurity, hacking and programming with python, I have never worked in IT, my plan is to start with aws partitioner, and then continue with solution arch and then sec, do you think I could get into some work? My doubt, is if I have to do some SOC path (blue team) or directly I go for cloud, and the last doubt is if I need to do comptia sec+ (I have the knowledge from other courses, but I can't afford the price of the certification for the moment) or with aws partitioner is it ok? Thank you very much for your time.
+1
Hello and sorry for the delay. First of all don't worry about comptia Security plus too much. Important is that you have the knowledge for the interview. You could also mention it, that you are studying comptia security plus certification. I didn't have the certification either, when I've started in cyber.
With regards to AWS. It's still the most popular cloud provider. This said, if you have never worked in IT, it will be very difficult to get into cloud security. It's not exactly entry level job position. Still it's not impossible. You just want to stack as many "cards" on your side.
If you don't have previous IT skills, definitely spend a lot of time connecting with professionals on LinkedIn and do a lot of projects related to cloud security.
Your best shot is through referral
Interested please make videos
Thank you, I will!
Do you think CCNA is necessary if you have Network+ and do you need to take AZ-104 before AZ-500 after you complete AZ-900? Good video by the way!
Thank you @tarrycapybara90
I don't think CCNA is necessary if you have Network+. You need networking basics and Network + is more than sufficient.
With regards to Azure certifications. AZ-104 before attempting AZ-500, especially if you are new to Azure. Don't worry though. There is overlap. AZ-104 goes into security as well and you will use this knowledge in AZ-500 as well.
Could you post a link to the website that you keep showing in the video that outlines all these steps?
You can find the link on my discord channel. Here it is.
knotty-session-8dc.notion.site/Cloud-Security-Engineer-RoadMap-e651c77151f14ab0bc44c90a80cf8979
Thanks! @@Cyber-Check
Be my mentor please I need a 1 on 1 mentor
Hello, if you need any help try to join discord channel. I can advice you there. :)
Hey great video, can you share your list ? please
It's available on my discord channel. Here is it for you
knotty-session-8dc.notion.site/Cloud-Security-Engineer-RoadMap-e651c77151f14ab0bc44c90a80cf8979
Love you
I love you!
Crazy you don't even need all those certs to become one!
That's true! Professional experience and your drive goes far.
Did the intro say a “3 to 6 figure salary”?
Hope I can at least have a salary of HUNDREDS of dollars per year. 😆
It will very much depend on the country and company. I mean...if you worked for Nvidia couple of years and got some stocks, you are doing alright. 😁
unusualwhales.com/news/nvidias-nvda-employees-are-suddenly-so-rich-and-happy-that-the-companys-got-a-semi-retirement-problem
@@Cyber-Check that’s very cool. They’re lucky!
I was just joking around because, in the United States at least, a 3 figure salary isn’t something that would attract anyone. That’s saying you would make less than a thousand U.S. dollars a year.
Is country depend on this salary?
It will be always the case. This said it will be overall high in each country relative to average salary. The best paying country to my knowledge is Switzerland and you can find plenty of remote jobs. I know people from Czech Republic that took remote job in security from Switzerland companies. All you need is skill, knowledge and some practical experience under your belt. :)