cybersecurity

The original post: /r/cybersecurity by /u/Apita2000 on 2024-11-10 03:26:16.

I had a large encrypted 7zip folder 50+GB. When I copied a single file into the folder, it took so long for it to be copy over.

Why does 7zip take so long to copy a single file?

The original post: /r/cybersecurity by /u/eatsweets3232 on 2024-11-10 03:10:42.

The original post: /r/cybersecurity by /u/joshryckk on 2024-11-10 03:03:13.

The original post: /r/cybersecurity by /u/waltfrombb on 2024-11-09 18:43:34.

Please let me know if it's okay to post this here! I'm really nervous and stressed. I'm very bad at my time management, especially when studying because I hate studying. I have an upcoming phone interview on Tuesday for a Security Engineering role with Amazon. I had 5 full days off last week and I only studied around 20-25 hours in total and I took notes about some cybersecurity topics that I felt was relevant to my role and what the recruiter mentioned. This week, I had the past 3 days off. Took a little bit more notes that I probably could have finished in a day. In total now, I have about 30 pages of notes. Note taking is rough and super boring, but now I'm looking at other things I needed to study from the job description as well, and I'm scared that I don't have time left for other stuff. I have a total of 30 pages of notes on some security-related topics (I feel like these would have been better for me to do for the loop?? This is literally only a one hour phone interview and I put like 25 hours into these other notes). I have to still study for secure code review (which I suck at) and some compliance documents. The recruiter also said I need to study pentesting and app testing. On top of this, I need to refine+practice my stories for the leadership principles (I have 10-12 stories written down that I wanted to rehearse. There are 6 leadership principles that I just couldn't think of a story for).

I feel like there's not enough time to do everything. I need to revise my notes on top of this too. I only have the next 2 days essentially. I'm scared. I also don't know if there will be coding (the recruiter mentioned secure code review but not sure if the interviewer will ask me to code/script something. The job description mentions secure code review but doesn't mention any other programming or specify any programming languages. My resume does have Python listed so I feel like I need to look over that just in case). Any advice?? I'm freaking out. This would have been such a good opportunity for me and I feel like I ruined it

The original post: /r/cybersecurity by /u/Bahai_Guy on 2024-11-09 18:37:52.

I'm learning security and am trying to get in the habit of becoming aware of new security threats, tactics, attacks, etc.

What blogs, newsletters, podcasts, etc do you turn to when needing to stay up to date on a daily or weekly basis. Thanks in advance.

The original post: /r/cybersecurity by /u/anynamewillbegood on 2024-11-09 18:11:42.

The original post: /r/cybersecurity by /u/Smnthjm08 on 2024-11-09 18:03:03.

How can I develop an algorithm that tracks pirated copies of my CMS content using digital fingerprinting, and compares it against my database to identify unauthorized distribution?

The original post: /r/cybersecurity by /u/notl22 on 2024-11-09 15:18:22.

We are a small company of 20 staff and I'm looking to deploy the best cybersecurity training I can for staff. Most of the staff are over 45.

I see that cira provides a cybersecurity awareness training but I'm not sure if it's just a resell of something else.

Knowbe4 seems to have alot of new stuff like AI testing which looks promising.

We're Canadian so I wouldn't mind supporting cira iff it's the better product or the same as something like knowbe4.

I'm only one admin, so looking for some hand holding and turnkey.

What do you recommend or have experience?

The original post: /r/cybersecurity by /u/easyrider767 on 2024-11-09 14:53:57.

During an interview with GCP Architect this week his suggestion was to encrypt individual client/customer data using his own private/public key. The scenario was global ecommerce system. Am I missing anything here or is he just plain stupid?

This guy implements security solutions for clients worldwide from security team.

Are GCP Architects idiots - prove me wrong?

The original post: /r/cybersecurity by /u/Such-Heat1674 on 2024-11-09 13:47:34.

The original post: /r/cybersecurity by /u/SaltyMushroom9408 on 2024-11-09 13:43:04.

PJSA or TCM Soc101 or Cdsa or Ccd?

Time has Change a lot of opportunities in the field. Which one is better?

The original post: /r/cybersecurity by /u/Sweet_Alfalfa8070 on 2024-11-09 12:36:47.

Hello everyone, first post here!

I am currently working as a SOC level 1 and cursing a diploma in cybersecurity, I have to do a final project but I don't know what to do it about.

I need to develop a cybersecurity strategy for an organization that reflects what I have learned throughout the program. These classes are introductory to cybersecurity, but I don't know what to do. I was thinking of some integration with splunk since my current job mostly provides Cisco services, but since it is still a start-up, I can introduce something open source without problem.

All ideas are appreciated!

The original post: /r/cybersecurity by /u/the3rm8t0r on 2024-11-09 11:42:10.

The original post: /r/cybersecurity by /u/JCTopping on 2024-11-08 04:11:41.

The original post: /r/cybersecurity by /u/Skadooshes on 2024-11-08 02:29:07.

I've been studying for this exam for the last couple months and getting ready to take the test in 2 weeks.

Has anyone here taken it recently? Do you have any final tips or suggestions for me?

The original post: /r/cybersecurity by /u/D3vil5_adv0cates on 2024-11-08 00:45:07.

https://www.cia.gov/careers/jobs/undergraduate-internship-co-op-program-cyber-operations-and-mission-enablement/

Has anyone ever done these internships, and has it led to a job?

The original post: /r/cybersecurity by /u/Fit_Note_4910 on 2024-11-07 23:45:27.

I’ve just started my cybersecurity career and wanted to get an idea of some high paying and interesting niches that I can work towards. Right now I do mainly AppSec and have some exposure in CloudSec, and I’m finding CloudSec quite interesting.

I’d be interested in things on the automation side as well (did an internship in a DevOps role before), so something like DevSecOps sounds interesting, but from what I’ve seen it’s mainly focused on automation and less security.

My goal is something in Silicon Valley where I’d be engaged but also be able to maintain a passable wlb. Any opinions on what and how to work towards those niches would be appreciated, thanks!

Edit: When I say passable wlb, I mean just that: “passable”. As long as it’s not something like an hft with 60 hour work weeks I don’t mind.

The original post: /r/cybersecurity by /u/Stunning_One1213 on 2024-11-07 22:41:18.

I work for a Utility. We have all IT and OT devices forwarding syslog to SIEM. I discovered a few ICS cybersecurity tools like Scadafence or Dragos which are saying to deploy a tiny vendor appliance that can connect to mirror network/SPAN port traffic at sub-stations. What advantage will I have with these OT cyber tools when I am already forwarding syslog from Engineering devices like Schneider Electric to SIEM?

The original post: /r/cybersecurity by /u/waltfrombb on 2024-11-07 22:01:39.

POSITION: Security Engineer! I have about 4 years of full-time experience in the field. I'm studying relevant (to the job description I applied for) domains/topics from https://github.com/gracenolan/Notes . Somebody on Reddit said that for each of the topics under the domain you are studying, you should know enough info on it to speak for at least 5 minutes. This is obviously a lot and I don't have that much time. I have an hour-long FAANG phone interview coming up in several days (I've had a little over 2 weeks to prepare in total, and I've been looking over things outside of this as well), so it's been stressful. I'm not sure if my note taking is enough or if I should dive in deeper. For example, for the 'interception attacks' topic under Network attacks (under the Exploits domain), I just wrote down what a man-in-the-middle attack is and very brief descriptions of 2-3 other attacks that would fall under it. Would this be enough??

The original post: /r/cybersecurity by /u/Astro-A26 on 2024-11-07 21:59:53.

The original post: /r/cybersecurity by /u/CuradoRoy on 2024-11-07 20:41:33.

Are there any more efficient ways to check for detections for a specific security vendor in VT for a list of 150 hashes? I do not want to search each hash and make the determination myself.

The original post: /r/cybersecurity by /u/WhenTheRainsCome on 2024-11-07 20:37:58.

I'm updating my understanding and ability to communicate to non-technical folks on WHY hardware keys improve security. There are some classic scenarios like, you can't read your FIDO2 auth over the phone in a social engineering scenario like you can with an OTP.

I'd like to showcase how phishing-resistant MFA protects against an Attacker in the Middle scenario.

I don't operate a PhaaS platform, so I'm missing some of the tech details from the TA perspective, how far off base are the scenarios I diagrammed out?

Diagram

The original post: /r/cybersecurity by /u/Fit-Information3858 on 2024-11-07 20:34:33.

Has anyone in Australia used eSentire for vciso security management 12 month program? One of the companies I am looking at contracting for work. Open to honest feedback back both positive or negative please

The original post: /r/cybersecurity by /u/Byte-SizedWisdom on 2024-11-07 20:19:35.

In your experience, what are the most effective strategies for identifying and mitigating insider threats without compromising employee privacy?

The original post: /r/cybersecurity by /u/noreply-000 on 2024-11-07 20:19:16.

3 years in IT Support. Recently achieved my Bachelors in Business Administration and MBA. Certified in Cisco CCST IT Support/Networking/Cybersecurity and Azure Fundamentals & AWS Certified Cloud Practitioner. I am interested in taking the Blue Team Level 1 Certification to increase my chances but feel like this might be overkill.