You forgot to link 'Forage' 8:00

did you use usajobs.gov?

Government job where? no one seems to be hiring

@@thebest3702 Government Jobs are everywhere…iv had 3 in Korea and 1 offer in Europe

​@@thebest3702have you tried usajobs? I've gotten a few offers but they were out of my range.

Did COMPTIA A+ as a introduction course in 2021, learned some! Looking to get into I.T. , so Securiry+ sounds a great way to start (thinking to COMPTIA ITF+, then Net+ & Sec+). Sounds great?

Yeah, it reminds me of when people used to compare the schools they graduated from, esp in my first job out of college, things like this tend to matter in the corporate world unfortunately

if your company pays for it which many does not bad and you can also use that to negotiate salary

I dont think you are always paying for the brand, paying for an OSCP+ is paying for a serious cert, while paying for CEH is in fact paying for a brand

I hope more and more people develop content creator fatigue and stop engaging with this slop.

Yeah, talking about how expensive these certifications are but she'll get you $1000 off the bootcamp, lol, which only makes you wonder what kind of ridiculous price they're charging. Oh yeah, that bootcamp will get you the Sec+!!😂😂😂

This video is nothing but click bait.

I recently got my security+ and haven’t found a job yet I think it helps but I also think you will need more than security+ in order to land a job nowadays

It unfortunately is overpriced, but if you're serious about getting into CSec the Security+ is good foundation for concepts, you should not be struggling with the content. Also, for U.S. citizens it is a hard requirement for many federal jobs when they're also phasing out degree requirements over the next year instead.

​​@@skella2k209 volunteering, internships, freelance, as quickly as possible after finishing certifications MAY help.

@@skella2k209I got mines as well and yes this cert looks good on paper, but if you don’t have any experience or projects to showcase your skills, these recruiters will not look twice at your resume. It’s the honest truth.

The exam fee increases every ~6ish months or so from what I've seen (I assume due to inflation?) But I agree with the other comments here that the Sec+ is just one of the qualifications you need for a job, technical cyber projects using hands-on tooling is another important pillar to focus on outside of just networking well and going to conferences/job fairs

You're not wrong. All valid points even though a lot of younger folks won't want to hear it.

As someone who is attempting to make the transition into tech/cybersecurity, I have thought about getting Linux+ before Sec+ mostly because as a recent Linux convert, learning the OS has been more interesting. Your enthusiasm for it is making me consider it even more.

Hmm you really think Linux+ has value? I have never seen anyone say it has value?

@@cyberlocc Absolutely. More and more companies are using Linux OS, especially for Cybersecurity. I personally know two young gentleman working for the CIA with nothing but an Associates in IT and Linux+, both making $200,000+ annually...and the biggest thing I hear from other folks I know in the sector is "learn Linux!". 90% of interviewers ask if you have experience with Linux now.

nowadays people did not grow up during the origin of the internet are not 50 years old who know and understand how the internet works from zeroes and ones. It is more difficult for people to enter the industry with all these so called gurus on youtube teaching, stupid boot camps and for profit exam companies. chill old timer

This is definitely an area I hope that the cybersecurity field will gradually do better at 😅

In my country CEH holds equivalent respect and recognition from HR as someone who holds OSCP.

@manimuthu3287 bruh that's crazy. What country are you from?

@@MagicEye117 India

@@manimuthu3287 BEcause HR does not know jack shit. They club CISSP with OSCP

Hi! Any other certs needed for fed gov work? Thanks!

thank you for sharing! I am currently studying for CompTIA Sec+ and Network+

@@tonyb9864 The primary certification that the federal government requires is CompTIA Security+. If you've never worked in the federal government before, even if you have a College degree in IT or experience in IT fields, you must get a CompTIA Security+ Certificate, as they require you to attain one six months after being hired. If you don't get it, you will get fired.

I'm last year student already got my sec+ 1 month ago. Beside to certificates what are the other skills considered essentials to obtain a government job?

do you agree with the federal government's hiring requirements is another topic for another day then

Hey, thanks for the recc! Will definitely be adding to my backlog :) I recommend watching Gerald Auger's vids for now sinc ehe has a lot of GRC content, hope this helps!

I like unixguy for this

Key word here folks: Newbie

HELLO, GIAC certs aren't for NEWBIES

Added this in another comment but something to look out for (hopefully soon lol) - With all these new job simulation programs that're popping up (Forage, Clicked, etc), I do think cyber hiring is changing since companies are hiring talent directly from their training sims, but rn, Sec+ is still the way to go for entry level security analyst roles.

Thank you so much!! A lot of work goes into these videos every week so I always appreciate comments like this.

Thought it was too niche, did you somehow get employed off that alone?

Thank you so much!! You tend to see more of this outside of the "rose colored glasses" throughout your career

@@WithSandra Thank YOU, I insist :)

CEH is litteraly trash. I took it from an ec council employee, who taught us IN CLASS how to hack a microsoft singapore site and some janky movie site also in singapore. Oh and he told us how to buy the answers to the exam. so stay far away from EC Council.

I actually would like to do ITILv4

I'd say 2-3 sound fine. No need to overdo it lol, unless its employer-sponsored, then go ahead and use that budget money xD (a better use for that will be for conferences like defcon or blackhat)

Go straight to Sec+ , don't waste your time on A+

@@prr3298 I am a newbie. I would prefer to gain IT fundamentals and experience for at least 2 years then cybersecurity after. I am playing the long game

Or get a CCNA and then Security+, covers the foundation in both networking and security. Also, very valuable in the job market.

@@ionamygdalon2263go to Libgen, and you get an e-pub for free. 😄

If you mean the All in One textbooks that you can find on Amazon for about ~$30 bucks then hell yeah! lol I rented my All in One Security+ textbook for about that price n passed my exam first try so 100% worth it

@@WithSandra Yes! That was exactly what I meant! Maybe I should have written a longer comment and be more elaborate 😅 Once again though, thank YOU for also taking the time to answer at the comment section. I have seen KZbinrs who do not care about the comment section and find that kind of sad. It's all about being a community, that's at least how I see it.

Well, I have been to GIAC conferences and they are very, very popular. You will take a far deeper dive in cyber security than 99% of the other certification tracks. GIAC is not meant for self pay. I agree they are probably too expensive but you will also learn far more than you realize.

Ty! Glad this could be helpful :)

Are they paying for it if not get your SEC+ and find another job.

You don't need A+ to get into the field I coach ppl for free and get them into IT all the way up to security

Honestly, I'd go straight for CISSP rather than an extra exam fee for CASP+ to prep for it, I dont think CASP+ has anything near the reputation that the CISSP has with hiring managers and recruiters. Best of luck studying!! You got this 🙌

​@@WithSandra Hi Sandra. Thank you for your suggestion. Would you recommend any study materials for the CISSP?

i agree with sandra casp is not as industry recognized as cissp but if u get the casp it should renew ur sec+ and CYSA you will also be level 3 on the DOD 8570

never heard of it. what are you trying to get into . maybe i can help

Nope, do an intro to cyber course like sec+ or the google cyber cert and then focus on hands on cyber certs like the PJPT or the eJPT. After that, the cert to actually land you a job is the OSCP. Its a difficult and expensive exam so it is wise to do some intermediate training like the CPTS, PNPT, or eCPPT before attempting the OSCP.

​@@Thiccolohave you taken both the CPTS and OSCP? I've seen people claim that the OSCP is shorter and easier than the CPTS. Might be worth doing a little research on this for anyone wanting to red team

CompTIA certs will check boxes on government lists which is definitely important depending on where you're looking, but net+, Google Certified in Cybersecurity, or ISC2 CC give you the solid foundational knowledgebase (note the difference between knowledgebase and skillset). You got to know how stuff works before you can secure it. You need both the HR box checks and the skillsets. Once you have your foundations, you might even start with TCM Security's PJWT to start building a bug bounty portfolio while you work your way through the pjpt, pnpt route. Anything Offsec is really expensive, but if you can get your foundation knowledge, build your skillsets with TCM Security, Hack the Box, or INE (my lean is toward TCM and Hack the Box, great programs), and knock out a couple gate keeping certs on the side (a lot of this knowledge you'll pick up passively), it might be enough to get a slot with someone who'll pay for your Offsec subscription. Not to mention the combo of the affordable TCM Security certs and the Hack the Box academy cert will go a long way to prepping you for OSCP. Also, if you are planning to do any CompTIA certs, which their are definitely ways to get them for reduced price (helps with the checkbox), do the ones you intend to get in order. CompTIA has a system where a more advanced cert within a path will automatically renew all certs in that path below it. For example, Pentest+ renews sec+, net+, and a+ simultaneously, giving them all the same renewal date and nullifying the fees. A lot easier to manage once you start racking up renewal cycles. Anything you can do to uncomplicate things is always a plus. Handling a dozen different renewal cycles and fees at the same time is not preferable.

@@cusillo6976 Agreed I've seen many cyber pros saying the CPTS is going to be the new OSCP, even seasoned hacking vets. Very interesting to see which comes out on top in the next few years from recruiters/HR

Google cybersecurity course will provide a voucher for comptia sec+. They even suggested to combine the two on your resume. I would recommend sticking with comptia and Google, but be sure to get plenty of hands on experience, create your own projects.

GIAC is expensive, but they occasionally have programs that are grant funded (free).

@@sharspice4041 ​ @sharspice4041 Well, currently I am doing a Certificate IV Cybersecurity let me finish that first and then I will move onto the google one and comptia one as well. How do I get hands on experience though? Where exactly do I create my own projects?

if you're planning on getting casp id prob go for cissp instead. For dod you will b level 3 compliant with CASP but outside of government its not really that important cissp is more industry recognized but i will say you need someone who already has been certified to vouch for you once you pass otherwise your cert will be considered as cissp associate , aka not the offical deal

let me ask you this are you init for good work to life balance? if you are stay away from anything that has soc/noc If you're interested in security jobs there are plenty of jobs on the blue side that pay 6 figs and have great work to life balance

Honestly, there's not an amazing option for beginner pentesting certs, consider looking into the TCM or INE certs, but most are intermediate to advanced like CPTS or OSCP, which are the highly competitive certs that would get you hired. Pentest+ is known bc of CompTIA branding but I wouldn't say it's a highly-sought after cert either. For EH, it's rly about skill based training so doing CTFs and other ways to get hands on experience will help you a lot in the long run before you study for a cert like the OSCP when you're more advanced. Best of luck to you!!

what about it?

Not for beginner level 😎😎

CISSP is really just a management cert, its useless to anyone else. i ONLY keep it because my employer wants me to have it so they can bill me out higher

DDoD 8140 now supercedes DDoD 8570. Practical, hands on knowledge and being able to talk about that is always important.

​@@FordsNotes-cyber yup 8140 policy considers certification, experience, training, and education not just certs

Best of luck studying!!

@@Emilyghe I was told it was not that much more difficult than Security+

@@Chitownsfinesthoops The important thing to consider when taking the CISSP, think like a manager, not like a security practitioner.