To become a cyber security professional, you need to learn different knowledge and skills under several fields. Below are the key things you need to learn and the skills you should develop:
1.Basic IT Skills
- *Operating Systems*: Understanding of operating systems such as Windows, Linux, and macOS.
- *Networking*: Understanding computer networks, protocols such as TCP/IP, DNS, HTTP/HTTPS, and network equipment such as routers and switches.
- *Programming Languages*: Learning programming languages such as Python, JavaScript, C/C++, and Java.
2. Computer Systems Security
- *System Hardening*: The process of strengthening systems so they can defend against attacks.
- *Endpoint Security*: Understanding antivirus software, antimalware, and firewalls.
3. Network Security
- *Firewalls and VPNs*: Understanding and setting up firewalls and private networks called VPNs.
- *IDS/IPS*: Learning and using systems that detect and prevent attacks such as Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS).
4. Application Security
- *Secure Coding Practices*: Learning and using techniques designed to write secure software.
- *Web Application Security*: Understanding of common web application security problems such as SQL injection, Cross-Site Scripting (XSS), and Cross-Site Request Forgery (CSRF).
5Data Security
- *Encryption*: Understanding and using encryption techniques such as AES, RSA, and hashing algorithms such as SHA.
- *Data Loss Prevention (DLP)*: Methods to prevent data loss or theft.
6. Offensive and Defensive Security
- *Penetration Testing*: Understanding and using techniques to investigate system gaps.
- *Incident Response*: Methods and techniques for detecting, preventing, and responding to attacks.
- *Forensics*: Studying and using intrusion detection techniques and searching for evidence of attacks.
7. Certifications
- *CompTIA Security+*: Basic general knowledge about security.
- *Certified Ethical Hacker (CEH)*: Techniques and tools used to hack systems legally.
- *Certified Information Systems Security Professional (CISSP)*: In-depth knowledge of all aspects of information security.
- *Certified Information Security Manager (CISM)*: Development and management of corporate security policies