IamSpotted: Adventures in Cybersecurity

Hello World!

I want to share my journey into the world of cybersecurity. I initially started my civilian career as a Drafter and it is what my degree is in. I really enjoyed working in CAD software such as Solidworks, CATIA, and Inventor. However, I’ve also always enjoyed all things computers just as much if not more. It was while I was working as a drafter that the cybersecurity bug got me. I was listening to various Youtubers such as NetworkChuck, David Bombal, and the CyberMentor to name a few while I would be working on drawings.

Then I found out about a program through my brother-in-law that would kick start me on this path. At the time, I didn’t have the money to pay for training or the certifications, but this program offered the training for free and the covered 3 certification exams. This program is called the Cybersecurity Workforce Certification Training (CWCT) program. It is funded by an NSA grant and has a few different tracks. The one I chose was the Sys Admin track. I got free training on materials that covered A+, Linux+/RHCSA, CEH, Sec+, CyberOps, and Cloud Sys Admin. I ended up using my 3 vouchers on the A+, RHCSA, and CEH exams. I ended up passing both the A+ and CEH exams, but unfortunately I didn’t pass the RHCSA exam. During this program is when I got my current job working on a help desk. I had yet to take the A+ exam, but I already had it scheduled and passed it within 2 weeks of starting the job. It was a pretty easy transition since I just moved from the company I was working at to the parent company’s corporate office.

Towards the end of that program, I found out about another opportunity from a friend on a Discord server I’m active on. This time, it was a program from SANS. They do Cyber Immersion academies and the one I applied for was their Vet Success program. At the time I applied and was accepted, it was 3 different courses with the first two being already determined and the last one we were able to choose from a list. Through this program, I took the training for GIAC Security Essentials (GSEC), GIAC Certified Incident Handler (GCIH), and GIAC Web Application Penetration Tester. Once again, I would successfully pass 2 of the exams and narrowly missed passing the GWAPT by 3 points. I was a bit disappointed, but at the same time I learned so much while doing that training. When I first got the books for the GWAPT, I realized I was in the deep end of the pool, but I studied the material as much as I could and while the end result wasn’t what I was wanting, I have no regrets knowing that my knowledge is much better than it was before I started.

At this point, I’m trying to make a transition from the help desk to an entry level cybersecurity role. I really want to start putting all the training I’ve been doing to work and help a company (or companies in the case of an mssp) with keeping their data secure. I’d like to end up somewhere in the Red Team end of cybersecurity, but we will see where this adventure ends up taking me.

I really hope everyone enjoys my blog. I’ll be posting about personal projects I’m doing, various walkthoughs for TryHackMe rooms, and cybersecurity news that catches my attention. Have a great day and thanks for checking out my site!