Re: Building a career in vulnerability detection/assessment, penetrating testing and forensics

[Madhur Ahuja <ahuja.madhur () gmail com>]

Hi Jonathan

Well, I fully agree with you in this part that areas which I have
mentioned are indeed broad. It would be premature for me to point out
any particular area at this moment since I do not have any
professional experience in these apart from my undergraduate education
in Computer Science. During my undergraduate education, I had a strong
interest and passion in exploring tools and using Linux network
security tools like Nmap, Ettercap and Wireshark.

I am taking a break from my job in services/consulting and and plan to
pursue my Masters in information Systems specializing in information
security. I am looking for pointers on how to make best use of this
opportunity to begin my career in any of the areas mentioned below and
then dig deeper into the particular area as I get more and more
informed about this field.

Thanks again for your pointers.

Madhur

On Tue, May 3, 2011 at 10:41 PM, Jonathan Younie <jonnyp4lsec () gmail com> wrote:
> Madhur,
>
> It's commendable that you're interested in the field and willing to learn
> apparently. The fields you've chosen there (vuln/risk assessment, pen
> testing and forensics) cover a very broad scope of information. You could
> choose just one of those and spend an entire career getting to the highest
> level of it. The reason I bring that up is that trying to tackle all of
> those fields might be a stretch and the amount of information that people
> could respond with could be overwhelming, especially if your background is
> not extensive in those areas. Is there anything you're particularly
> interested in among those more specifically?
>
> Regards,
> Jonathan Younie
> CEH, MCSE, MCTS
>
> On 5/3/2011 8:41 AM, Madhur Ahuja wrote:
> > Hi All - I am interested in building a career around security
> > especially vulnerability detection/assessment, penetrating testing and
> > forensics.
> >
> > I have 5 years of work experience in development and consulting in
> > Microsoft technology stack and plan to pursue education in Information
> > Security
> >
> > Any advice on how to progress in this field will be highly
> > appreciated. Any tips regarding certifications, tools and procedures
> > which I can start learning along with my course ?
> >
> > Thanks,
> > Madhur
> >
> > ------------------------------------------------------------------------
> > Securing Apache Web Server with thawte Digital Certificate
> > In this guide we examine the importance of Apache-SSL and who needs an SSL
> > certificate.  We look at how SSL works, how it benefits your company and how
> > your customers can tell if a site is secure. You will find out how to test,
> > purchase, install and use a thawte Digital Certificate on your Apache web
> > server. Throughout, best practices for set-up are highlighted to help you
> > ensure efficient ongoing management of your encryption keys and digital
> > certificates.
> >
> >
> > http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
> > ------------------------------------------------------------------------

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------