I already hold CompTIA Security+, what path do I follow to get to IT forensics?
Do I have to go Blue team to get there or Red team? @Daniel
-
Cyber Security Forensic
-
Hey @Victor-Rosa
Digital Forensics is a super cool niche of cybersecurity! It is usually associated with Incident Response, so you might hear the acronym DFIR (sometimes pronounced Dee-Fur) and generally would fall under the 'Blue Team' moniker.
Having your Security+ is a perfect first step into this world and sets you up for success for your next certification(s).
EC-Council has their Certified Hacking Forensic Investigator(CHFI) cert. SANS/GIAC also have DFIR certs like GCIH and GNFA.
The good news is that since this is a very specific skillset,as we've seen, there are certs out there that cater to DFIR and you just need to perform a quick Google search to find a bevy of them so you can start learning which may be the best one for you and your specific goals.
I hope that helps.
Cheers,
DanielITProTV
Show Host -
Thanks @daniel-lowrie87
-
Thanks for this, I am feeling very overwhelmed with where to start. There are so many certs out there. Giving these guys a shot, they seem to have great feedback. Can't really afford college so this seems a great option for me. Which other certs can you recommend? do I need cisco? I am learning python a Linux just now. I have been in IT for 20 years as a technician but never really bothered with certs, but I want to improve myself and have some certs to hang on my wall
-
@Jonathan-Sutherland I would suggest to start with CompTIA A+, You might think it has no use because of been in the field 20 years, but Indeed this tells employers that you have a very solid foundation in IT fundamentals. After my personal preference will be CCNA since I learned way more in CCNA (including hands on) than with Network+ even tho I have all 3 (A+ network+ and Security+) I have spoken with hiring managers and they prefer someone that has a very solid understanding in IT fundamentals specially networking.