Entering cybersecurity from Computer engineering

Recent grad from computer engineering with around one year in engineering/semiconductor side. Wanted to go for entry cybersecurity positions. Perhaps what certification should I really start as for credentials since I do not have a cybersecurity focused degree. I am currently thinking CompTIA Security+. I also have the option to get a cybersecurity certificate from Oregon state. Mostly planning for in state career so would that be better? submitted by /u/ItBeLikDat777 [link] [comments]

Suspect ISO 27001 Cert: Missing from IAF, No Digital Signature - Fake?

I would like to tap into this subreddit's collective wisdom, to enlighten me about the hairy subject of ISO-27001 certificates, specifically about their validity and/or authenticity. This is the case: while doing compliance assessment on some providers for a project in Spain, I've found a suspicious ISO-27001 certificate. Here it is: https://www.esbsistemas.com/wp-content/uploads/2025/07/ESB-SISTEMAS-ESPANA-SI-27001-inicial-2025-1.pdf That ISO-27001 certificate purports to be provided by the CB...

Securiti Education AI Governance Certification

Just a quick Question here, I received an AI Governance Certificate offered by Securiti Education but then I'm wondering if I can get a job preferably remotely? Any ideas would really help me out! submitted by /u/JealousSpeech1809 [link] [comments]

Does anyone use ACME or EST with their internal PKI?

We have many servers and network devices that support either ACME or EST for automated certificate management, but our CA is a Microsoft server running ADCS. These protocols aren't supported natively within Windows Server, so I'm trying to figure out if it's possible to integrate them or if we will need a different certificate authority for these devices? What are you folks doing to automate certificates with non-MDM devices? submitted by /u/umm-i-got-a-question [link] [comments]

certificates for authentication

We are moving towards certificate based authentication for devices, like laptops, large devices, and mobile phones. The cert will be used to authenticate onto the LAN or Wifi. What are the issues with using this same cert for authentication by a subsystem (an application) to internal corporate services or third party provided services over the internet ? submitted by /u/Loud_pendel [link] [comments]

what i should learn next before getting into cybersecurity and how can i get a certificate

what i've done compTIA ITF+ and compTIA A+ (without cert) i've learned everything about Linux fundamentals and i'm still learning using youtube , books like "Linux basics for hackers " and doing some modules on hackthebox.com related to Linux / networking i can write simple bash scripts i've write a simple password manager toolkit using bash you can use it to store and generate password and you can you use it check if your password had been leaked before and i'm planning to learn python is soon...

Microsoft warns of Windows smart card auth issues after October updates

Microsoft says the October 2025 Windows security updates are causing smart card authentication and certificate issues due to a change designed to strengthen the Windows Cryptographic Services.

CCT exam prep help

Hello, I completed the CCT (certified cybersecurity technician) course material through ec council and got a ticket voucher for the real exam to claim my certificate. What kind of study guides would you recommend to help me pass the exam? Any help would be appreciated! submitted by /u/UsualConstruction165 [link] [comments]

outflanknl/regcertipy: enumerates cached certificate templates from a Windows registry file

submitted by /u/radkawar [link] [comments]

Hitachi Energy MACH GWS

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.1 ATTENTION : Exploitable remotely/low attack complexity Vendor : Hitachi Energy Equipment : MACH GWS Vulnerabilities : Incorrect Default Permissions, Improper Validation of Integrity Check Value, Improper Certificate Validation 2. RISK EVALUATION Exploiting these vulnerabilities could allow an attacker to tamper with system files, cause a denial of service, or perform a remote man-in-the-middle attack. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The...

How to Automate Your Security Posture for the 47-Day Certificate Era

Security and Privacy Assessment of U.S. and Non-U.S. Android E-Commerce Applications

arXiv:2510.12031v1 Announce Type: new Abstract: E-commerce mobile applications are central to global financial transactions, making their security and privacy crucial. In this study, we analyze 92 top-grossing Android e-commerce apps (58 U.S.-based and 34 international) using MobSF, AndroBugs, and RiskInDroid. Our analysis shows widespread SSL and certificate weaknesses, with approximately 92% using unsecured HTTP connections and an average MobSF security score of 40.92/100. Over-privileged...

Cybersecurity Certification Roadmap for Internal Team - Requesting Feedback!

Hey folks, I'm have been tasked with updating my companies 'Cybersecurity Team Certificate Roadmap' for our Security team and I am looking to get some feedback on where we currently stand and what you think could be improved on. The company would cover all expenses for them so in theory 'price doesn't matter' as long as it makes sense. Notes: The current security team experience range varies from; right out of college (not even having Sec+) to having 20+ years of experience having a CISSP. We...

Burned Out Before Even Starting in Cybersecurity 😖

Hi everyone, I'm 24 and from London, UK and I've been thinking about this for a while. I wanted to share my experience and see if anyone else relates. I graduated university in 2022 with a BSc in Cyber security and was super excited to start my career. I dived into labs, projects and even completed the SOC Level 1 pathway on TryHackMe, earning the certificate in December 2024. But before I even got a job in cyber, I completely burned out. There's just so much to learn, and somewhere during...

Certificate program for US Veterans

The University of Syracuse offers a program for Veterans, one is the Google Cybersecurity Certificate. The program is free for qualified service members and spouses. https://ivmf.syracuse.edu/programs/career-training/o2o-admission/onward-to-opportunity-application/?utm_source=search&utm_medium=cpc&utm_campaign=2025o2opromotion&utm_content=v1&gad_source=1&gad_campaignid=23030358192&gclid=Cj0KCQjwo63HBhCKARIsAHOHV_WAzxzgqKuDOCrhv6yynmzEahTroJGnRA10OBQ5c-_RhmNr_flDfKoaAu0FEALw_wcB submitted by...

Titan Security Key

I was given a couple of the Google Cloud Titan Security Keys when I completed a certificate course. Are they worth the trouble? submitted by /u/eirpguy [link] [comments]