Alyssa Miller 🛩ī¸â€‹   â€‹Nov 19, 2022

So I just posted a number of #entrylevel #infosecjobs. My point isn't that I don't think people can search these out themselves.

Instead, I'm trying to highlight how jobs where the candidate pool will likely be entry level folks but the job description is poorly worded such that many will self-exclude.

Be brave, fuck the requirements section. If it sounds like a job you think you can do:

1. Tailor your resume. Don't lie but definitely highlight the correct relevant experience, skills, and/or knowledge you have.

2. Think about it like an elevator pitch. You have mere moments and few words to tell them why they NEED to hire you.

3. If you need someone to kick your #ImposterSyndrome in the ass, let me know.

Show threadJae BochsNov 19, 2022

@alyssam_infosec There's a pervasive fear of hiring entry level infosec folks - it's a big impediment, not just for the applicants, but also for companies who are starving for talent.

As a hiring manager, I'm quite aware of how easy it is to manufacture the perception of work product, to have friends talk you up, etc. It can be a useful datapoint but rarely does that contribute heavily to the final decision.

What does contribute: being able to talk competently about concepts and techniques, the ability to transfer knowledge laterally between domains. Open source and hobby work also tends to speak for itself, both in terms of their motivation, and generally being able to see their raw output, rather than (gilded) descriptions of it.

Show threadJae Bochs

@alyssam_infosec I can't stress enough the point of "transferring knowledge laterally between domains"..

This is the difference between "I have a bunch of experience unrelated to infosec" and "Here's all the other experience I have that will make me a better analyst/researcher/hunter/etc"

Nov 19, 2022 at 8:42pmWeb
Show threadJae BochsNov 19, 2022
@alyssam_infosec @InfoSecSherpa is a superstar in this respect. Much ❤ for library nerds, we love having you on team infosec!
Show threadAlyssa Miller 🛩ī¸â€‹   â€‹Nov 19, 2022

@jb0x168 couldn't agree more, this was literally the topic of both my TEDx talk in 2021 and it's covered to great depths in my book.

The ability to identify core transferrable skills and be able to communicate them in a way that is understood credibly, is so crucial to landing a role in your first infosec job.