Go Back   SOCNET: The Special Operations Community Network > Employment and Training > Professional Development and Education

Reply
 
Thread Tools Display Modes
  #21  
Old 18 May 2018, 21:49
nofear's Avatar
nofear nofear is offline
Proud wearer of a Beard.
 
Join Date: Aug 2005
Location: Australia-based
Posts: 2,655
Quote:
Originally Posted by doitforjonny View Post
IE - do you end up with recognized INDUSTRY certification
In regards to the "recognized" comment, I don't think that is even possible. Was reading a study on cybersec careers last week, where respondents' certifications were more than 150 different ones!

Kind of makes the whole certification thing a little pointless. I'm in the process of hiring a cybersec team, and I don't care about certification, just attitude, experience, and "cyber curiousity".

In regards to the original post, that's an excellent move.
__________________
"Amateurs train until they get it right. Professionals train until they can't get it wrong." - Unknown
Reply With Quote
  #22  
Old 18 May 2018, 22:07
HighDragLowSpeed's Avatar
HighDragLowSpeed HighDragLowSpeed is offline
Been There Done That
 
Join Date: Dec 2006
Location: Only Place For Me
Posts: 5,103
Quote:
Originally Posted by nofear View Post
Kind of makes the whole certification thing a little pointless. I'm in the process of hiring a cybersec team, and I don't care about certification, just attitude, experience, and "cyber curiousity".
I'm not a big fan of certs.

That said, there are some baseline certs - CISSP comes to mind. There are also some legit advanced certs - CCIE, EnCE, and several of the GIAC certs. Attitude only goes so far when people don't know what to look for during incident response or don't know anything about standards.

Most job candidates in the field are disappointing at best regardless of their degrees, certs, or experience. Interviewed one a month ago that had 10 years experience in the field, all sorts of certs and couldn't describe what a windows service actually does. Sigh.
__________________
"I know of no country in which there is so little independence of mind and real freedom of discussion as in America." - de Tocqueville, 19th century

God made machine language; all the rest is the work of man.
Reply With Quote
  #23  
Old 18 May 2018, 22:57
nofear's Avatar
nofear nofear is offline
Proud wearer of a Beard.
 
Join Date: Aug 2005
Location: Australia-based
Posts: 2,655
Quote:
Originally Posted by HighDragLowSpeed View Post

Most job candidates in the field are disappointing at best regardless of their degrees, certs, or experience. Interviewed one a month ago that had 10 years experience in the field, all sorts of certs and couldn't describe what a windows service actually does. Sigh.
In my recent experience, I've found the more experience / certs a candidate has, the more arrogant and demanding they are. I'm hoping that's not the case everywhere, but is another reason why I favour attitude over certs.
__________________
"Amateurs train until they get it right. Professionals train until they can't get it wrong." - Unknown
Reply With Quote
  #24  
Old 24 May 2018, 01:14
doitforjonny doitforjonny is offline
pumpin gas and kickin ass
 
Join Date: Dec 2003
Location: California
Posts: 773
NoFear

No argument from me on that, but for a lot of folks outside the industry trying to break in, you typically start somewhere.

Your point about proliferation of training is one of the key components of the 'critical skills gap'.

Folks inside the industry know what skills and certs have value, and don't necessarily need the training, unless they know a job they want requires something they don't have - the cert just unlocks the interview process.

To your point about arrogance, what we are seeing in any 'digital transformation' industry (Cyber, Big Data, AI, Digital Marketing etc) is that the majority of the 10+ year talent started OJT and are behaving as incumbents, because most employers hire for a skill or cert to meet a need and do not have bandwidth or expertise to train in house.

This makes the older incumbent workforce able to bend folks over on cost.

My personal belief is that this is still echoes of DotCom 1.0, where the long term relationship of employee with same company for entire career was broken.

The talent got pissed it was hung out to dry, got used to being 1099 contract help, and the model that broke professional development from career entry in these areas was born.

I think absolutely the best strategy is to hire for culture fit and soft skill (IE security mindset vs technical mindset - understanding of human behavior vs technical competence etc) assuming you have strong in house training culture.

For the individual trying to break in to the industry, it almost makes more sense to get hired as a peon janitor in one of the bigger companies and milk the shit out of hallway and cooler talk conversations to understand what sort of training to pursue, and then either hire into a role at that company after completing the training, or complete the training and hire into entry level at a competitor.

This would be if you did not have access to a program like the one in this thread, that would have a vested interest in placing you after completion in training.
Reply With Quote
  #25  
Old 24 May 2018, 01:22
doitforjonny doitforjonny is offline
pumpin gas and kickin ass
 
Join Date: Dec 2003
Location: California
Posts: 773
Speak of the devil this just popped into my news feed on FB

https://www.eventbrite.com/e/vetsint...ts-42053111990

These sorts of pipelines are scattered all over the place in industry and if they don't result in placement, they result in good market awareness and Face to face networking.

If I were hiring in this space, I would design something similar, a 40 hour course of instruction that was either A) based on an existing skill pre req or B) was the vetting process and skill confirmation for a role I had

and advertise it to my target persona (in this case veterans with existing networking skills) and put a networking offer on the end of it. Tell a few other companies you are going to have a mixer with vetted potential new hires and you have a program.

Yeah you would lose a week of one SME's man hours, but if you got 5-10 solid participants you would get a real strong look at them and assessment of their abilities.

You could run it as a night school for 2-3 hours a night, and not interfere with normal job hours to make it accessible.
Reply With Quote
  #26  
Old 24 May 2018, 17:42
KMP KMP is offline
Registered User
 
Join Date: May 2011
Location: Augusta, GA
Posts: 25
As for the Norwich program the Army waited until the last minute so the program has been delayed from June until September for first classes. Apparently the funds could not be sent to the school fast enough. From what I gleaned from the non-bcc email list old dude sent out Norwich has 50+ participants. Assuming Norwich is not giving Uncle Sugar a discount that is half a million ducats.
Reply With Quote
Reply

Thread Tools
Display Modes

Our new posting rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On



All times are GMT -4. The time now is 23:52.
Powered by vBulletin® Version 3.8.3
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Socnet.com All Rights Reserved
SOCNET