Linux security focus

Lisa Kachold lisakachold at obnosis.com
Tue Mar 12 19:27:24 MST 2013


Hello Blake,

There is always a big need for Linux/Unix/Windows security people.
 Security generally involves all attack vectors in a corporate environment.
  The type of work you do often centers around scanning and/or ticket
hockey type work.  You are generally told to state X irregardless of the
technical details of the issue.

I have worked extensively in Unix/Linux/Internet Service Provider security,
and I prefer Linux/Unixt systems administration.

Getting certifications is your ticket to working at any of the big shops.
Also, there are a good deal of contract positions open right now, because
people are gun shy (pardon my pun) of recession based changes.   All of us
have had to come to terms with the reality of contract work (the gold watch
and retirement plan went away with our parents generation) and short term
employment.   The average Linux Administrator position is about 26 months
(varies by survey).  Security contracts are often 12 months or less.

You certainly need to keep up with all security related news and use some
of the tools (Metasploit, aircrack-ng, nmap, ssh tunneling) and
technologies (network OSI stack up related to TCP/IP.

Come to our Hackfests at DeVry University the first Saturday of every month
11-2, where we have more than a few people who can get into anything, work
in some of the big shops in town, and join us as we attack virtual systems
(setup with multiple exploits for your edification).

Hope to see you there?


On Tue, Mar 12, 2013 at 6:55 PM, blake gonterman <gnunixguy1 at gmail.com>wrote:

> Hello all,
>
> I attended a few of the stammtisches a few years back, but kind of fell
> out of the Linux community...
>
> I've been working at a medium sized company trying to figure out where to
> go next. A coworker of mine is suggesting I go down the road of Unix
> security. To that end, I've built a small lab at home and have started
> getting back into learning to tools available. I'm not looking for a
> glamorous pentesting position, just a functional security position focused
> on Linux.
>
> I'm curious what people already in the field are focused on these days. I
> have quite a bit of experience with FIM (tripwire) and I'm focused on
> mcafee Web gateway at work currently.  Once my contract is over at the end
> of the year, I want to focus on more Linux relayed work.
>
> So, is there a need for a dedicated Linux security person here in the
> valley, or should I focus on the sysadmin portion and work security into
> the mix?
>
> By the way, I have the RHCSA certificate, I just decided standard sysadmin
> work wasn't for me.
>
> Any input is welcome.
>
> Thank you,
> Blake
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.phxlinux.org
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.phxlinux.org/mailman/listinfo/plug-discuss
>



-- 

(503) 754-4452 Android
(623) 239-3392 Skype
(623) 688-3392 Google Voice
**
it-clowns.com
Chief Clown
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.phxlinux.org/pipermail/plug-discuss/attachments/20130312/d70e95c5/attachment.html>


More information about the PLUG-discuss mailing list