Thread 106280507

This field is a barren wasteland

Nah it's a snake oil farm
>End Point Security solutions shit for Microsoft Office/Outlook/Active Directory that offer more attack vectors than just running a proper GNU/Linux setup
>Gets h4xxored

>>106280507 (OP)
Respect the jannies of the tech world.
I <3 JANNIES.

>>106280507 (OP)
cybersecurity as a field seems so meaningless like it's just band aiding stupid mistakes other people made

>>106280507 (OP)
all of IT is a barren wasteland now
it's over

>>106280507 (OP)
It's an industry capitalising on stupidity what do you expect?

>>106280507 (OP)
no, they just when went back to izreoo

>>106280507 (OP)
I’m employed in it
I’ve designed a script designed to work with a local LLM and a system prompt that can address 50% of our alarms when combined with historical data, so I can finally focus on useful things while I work, like practicing Arabic and playing paradox games.

>>106280890
Also /lmg/ told me this would be impossible when I had the idea a few months ago, because actual jobs are too hard for local models.
Lmao

>>106280890
Giga based. I wrote a rudimentary, logic based AI to record link schools in my company's DB with those in school district DBs based on name alone. It's 97% accurate, erring on the side of false negatives and has been very useful. Although we still give it a lookover by a human because it isn't quite good enough to let it run on its own blindly.

I wonder if a local model could push it the rest of the way. 99.5% accuracy is possible through name alone (some schools have changed names since our company DB was created). I have also considered adding a Google lookup of the address as a part of the matching criteria, but don't want to slow the matching down with a bunch of HTTP requests. Current algo can match 2000 schools in a few seconds.

>>106280507 (OP)
What do you mean? There's hella jobs in this field. Every company needs at least one cybersecurity person nowadays. And even moderately sized companies have whole teams.

>>106281151
That's neat. Tell that to all the grads that work in hell desk.

>>106281151
yeah, that's why I can't get a job in the field

>>106280507 (OP)
It's a new way of waging war.
You cannot apprehend it from a corporate's mindset, or from an hobbyist's mindset.
You need a warrior's mindset.

The problem being : 90% of the countries in the developped world don't cultivate that mindset anymore. In fact, they punish it.

>>106281172
>>106281210
What kind of jobs are you searching for? Audit/compliance is probably the easiest "in" (besides IT), as most business niggers don't give a flying fuck about cybersecurity until there's a security audit breathing down their neck. From there it's easy to become the "security guy" and spin into IT, data privacy, CISO, etc.
You will also have tons of free time as audits are once a year. Pretty comfy.
>t. Privacy Director / Audit Coordinator

>>106281172
Nta but no one will hire new grads for obvious reasons: who in their right mind would delegate their security to a bunch of retarded kids who think they know it all but have no clue about the real world, the field or anything?
Unless you have some CVEs and certs or demonstrable experience, no one will give a shit about you

>>106281504
That's exactly the point. You aren't getting experience, and no one is hiring you without experience. So those million+ jobs that colleges and tiktok influencers are telling you exist aren't getting filled by anyone except gurpreet who's going to lie on his resume since no one cares to check. So off to help desk you go after studying 4 years with a boatload of certs.

It's a misunderstood field since it's only visible when something goes wrong. When something does go wrong, all the c-suite tards look at you like "how could this have happened????"
I dunno, maybe our director is a dumb woman who knows nothing and get dumped by sales engineers every quarter? The department's budget is low priority in favor of marketing and paying for new shiny shit nobody knows how to use. Large companies are a bitch to secure since they still abuse and rely on cheapo indian workers. It's impossible to separate wheat from chaff when 300 Dopinders log in from suspicious indian village locations.

>cant get a job without experience
>hell desk isn't experience despite being the ONLY entry level IT job

>>106280902
Most of /g/ is too stupid to understand how to leverage AI as a tool for one's own projects, rather than have it do everything for you without any thoughtful input of your own. They are incapable of fathoming it because they don't have skills or vision of their own.

>>106281504
>no one will hire new grads for obvious reasons: who in their right mind would delegate their security to a bunch of retarded kids
This is overly pessimistic. Cybersecurity is a specialized skillset. When looking to hire, you look for a person who has those skills. It doesn't matter if it's from college, certs, or hands-on experience. The issue with what you are saying is that the vast majority of people with "real world experience" know jack shit about security and would have to learn a whole new discipline from scratch. Meanwhile, it's much easier to take someone who already has that knowledge and apply it to a company's practices. You can learn how a company operates in one week.

Companies have to take what they can get here. The amount of people walking around with degrees in cybersecurity and certs and 10 years of experience is practically non-existent. And companies aren't getting those people unless they are FAGMAN-tier. Job descriptions at mid companies requiring you to have dedicated the past 15 years of your life to cybersecurity are just bluffs.

This is more a case of ships passing in the night, as cybersecurity grads think the only way to get a job is to be an IT grunt and companies hiring for cybersecurity positions do the meme of """requiring""" a PhD, every cert imaginable, and 100 years of experience, when they will accept a college dropout with a security cert.

>CYBERSECURITY GUY "IM GONNA PROTEC!"
>MICROSOFT "PSST, FBI - TAKE THE BACKDOOR. RIGHT THIS WAY"

>>106280507 (OP)
not barren. filled with poop.

>>106281504
hey sport, i think you are misinterpreting the point of a college degree

>>106280852
and ladies & gentlemen, public torrents contains dangerous contents.

>>106280507 (OP)
it's just filling compliance checklists and writing memos anyway.

>>106284545
Cybersec jobs are about securing shit from "haxxor 1337" attacks, not from the gov, besides not only MS gives backdoors, but the CPU manufacturers themselves do it too, specially Intel Aviv.

>>106281568
stick to working as a SOC monkey

>>106282508
>When looking to hire, you look for a person who has those skills. It doesn't matter if it's from college, certs, or hands-on experience.
that was my point.

>>106282508
>The issue with what you are saying is that the vast majority of people with "real world experience" know jack shit about security
degrees don't give you experience, so you missed the point.

>You can learn how a company operates in one week.
lol, no. also, what the fuck does knowing "how a company operates" has to do with knowing how to prevent or protect it from attacks?

didn't read the rest

>>106284733
>the point of a college degree
to waste time? you can learn a lot about cibersecurty by yourself. tons of people in the field don't have certs or degrees, or have degrees in unrelated fields (chem, math, physics, even self-taught artists and shit).

>>106280507 (OP)
I work in Cybersec for a fortune500. It used to be cool back when we had a CISO with a brain, but now my new boss is some dumb diversity hired Karen with no technical skill. I basically just do meetings and complete checklists. But the pay is very good so I'm sticking around until managment changes again.

>>106284871
This. It's a circus and they pay us clowns well so I guess honk honk from me.

I work in a field related to cyber security
I'm the procurement/logistics agent that gets all the software licenses, hardware, armed guards, munitions, and food set up to support field operations in remote scenarios (e.g., Haiti)

>>106280507 (OP)
lol remember all those articles saying there are three million vacant positions in cybersecurity, with like a fourth of them in the US alone?
>Okay, where are they listed?
>UHHHHHHH

Also I got CISSP two years ago. The exam was a joke, but it's done nothing for my career (actually I'm unemployed lol), so I guess it balanced out.

>>106285793
kino, how'd you get into that position?

>>106285887
They promoted it because they wanted to import 5000 indians a week to reduce the overall salary to make sure companies can tick a government-mandated checkbox and they won't get sued by someone

>>106286140
I was already doing similar work for Chinese heavy machinery companies getting sites set up with essentials in new quarry sites in Nigeria from the comfort of my old Kentucky home. Part of their Belt and Road project thingy (basically soft colonization)
I got bored and wanted more pay, emailed my resume out to several companies, and a security company offered me the best package of benefits/pay/work hours. Now that's my day to day. Making sure toiletries, medical stuff, food, munitions, etc arrives on time. A lot of the actual physical movement is handled by freight forwarders and "contractors".

>>106280507 (OP)

There's no way to properly secure IT infrastructure in American business. Security requires time, testing, and compliance, and achieving that is nearly impossible.

China is honestly going to hack the country into darkness when shit finally kicks off.

Is cybersecurity that bad to get into I was thinking about it and thought it would be good since everyone would just be vibe coding now, and most big sites use jeets

>>106286382
Yes, get into it. The grift is alive and well.

>>106288134
nice

>>106282356
I’ve learned a lot about your average worker in this process. My colleagues who I’ve seen do incident response against ransomware actors with good effectiveness simply have zero vision and believe I’m essentially a god for making it, and that they have no chance to replicate it themselves or to help me make input data. I tell someone the scope of what I made (95% accuracy and 50% of alarms comprising 30-40% of our man hours gone instantly) and they’re worried about getting funding for a cloud ai instance and ask if I can use Llama scout (retard shit) in AWS bedrock because it’s cheaper and want to gimp what I made with rate-limiting over funding concerns. We can eliminate 30-40% of the workforce now: just buy a decent pc and run what I made after asking the our relevant executive on Teams about it. There will be no funding concern after that. There’s so little vision and everyone wants to overcomplicate every problem.
No wonder nothing gets done.