SDL Episode95

From Paul's Security Weekly
Jump to: navigation, search

Recorded on January 15, 2019 at G-Unit Studios in Rhode Island!

Hosts

  • Russell Beauchemin
    Cybersecurity & Network Security Program Advisor and Director of Instructional Support & Learning Innovation at Roger Williams University.
  • Doug White
    Cybersecurity professor, President of Secure Technology, and Security Weekly network host.
  • Announcements

    • If you are interested in quality over quantity and having meaningful conversations instead of just a badge scan, join us April 1-3, at Disney's Contemporary Resort for InfoSec World 2019 where you can connect and network with like-minded individuals in search of actionable information. Use the registration code OS19-SECWEEK for 15% off the Main Conference or World Pass.
    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.

    Topic: Leonard Simon, Springboard

    Leonard Simon is the Senior Security Engineer Consultant at Springboard
    Leonard Simon is a Senior Security Engineer Consultant based in Miami, FL working with businesses to help design, implement, monitor and troubleshoot detailed system security architecture for customers within various industries such as healthcare, government, manufacturing, technology, transportation, retail, financial, legal, hospitality, travel, and utilities. Leonard is an adjunct professor at various university where he teachers several online courses in cybersecurity. Leonard is also a Cybersecurity Mentor at Springboard where he interacts with students weekly talking about their course work as well as providing guidance throughout the course. Leonard holds an M.S. in Management Information System with an Information Security concentration from Nova Southeastern University, a B.S. in Information Technology from Florida International University along with various technical certifications like Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Check Point Certified Security Master (CCSM) and Cisco Certified Network Administrator (CCNA). Leonard is also a doctoral student at Capella University working on his Doctor of Information Technology (DIT) degree in Information Assurance and Cybersecurity.

    Certification guides, courses, and resources



    Questions:

    • Could you tell us a little about what mentor actually is? Ok, so do I need one?
    • How should people go about selecting a mentor?
    • A lot of people always ask me about "should I go to school? It costs money, takes time, and I could just go out and work." What do you think?
    • I mean, in any given week, there is something new so you pretty much have to always be learning something if you want to keep up but since you are the expert, how do you become a student in Cyber?
    • Should probably get a bachelor's degree if you at all can but what about a Master's degree?



    Now listen, the traditional idea of a Master's degree is that it is the Undergrad curriculum without the readin', ritin' and rithmetic. So, I always tell people that you shouldn't get an M in the same area as your B unless it really brings something to the table. Thoughts?

    The other side of this is certs. I have some real reservations about certs (says the guy with a lot of certs). I mean, I think they have a real purpose, especially to "prove" your skills alongside your resume. Some of us, just kind of "did" all this security stuff but we did it back before it was really a thing like it is today. When I got my degrees, it didn't even exist even though I was doing it. I would have far rather gotten a PhD in Cybersecurity but no such animal then. Certs vs. school vs. experience has been a debate as long as there have been certs being offered. I do think there is a marketing issue in the sense that too many people are "selling certs" to people with the implication that in a week we can take you from a drooling idiot to a Cybersecurity expert, no prior experience required, but I don't think that really works. To me a cert is just "proof" of concept and you still have to back it up. Guys?

    • Well, what about that dreaded experience. Companies are always wanting "entry level with 3-5 years". How does a student get that experience?
    • The other question, is how to move from being a student to being a professional? How do I do that? Any tips?
    • Last thing: Care to make a prediction about this market for cybersec people in say 5-10 years? What do you think will happen.