this post was submitted on 05 Sep 2024
15 points (100.0% liked)

Cybersecurity

5672 readers
112 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 1 year ago
MODERATORS
 

I'm looking to start a career in GRC. Been searching a bunch of different things (e.g. cybersecurity internal audit, GRC analyst, cyber audit, risk analyst, etc.) but everything that's coming up is mid-senior positions, manager positions, etc.

you are viewing a single comment's thread
view the rest of the comments
[–] Nomecks@lemmy.ca 1 points 2 months ago (1 children)

They're America specific, but every region will have similar frameworks. ISO27001 is world wide I believe.

[–] hellofriend@lemmy.world 1 points 2 months ago (1 children)

I've actually just done a bit of digging on it and it seems that CISSP is used in Canada, so I might pull the trigger on that. I'm also considering Unixguy's GRC Mastery course. Happen to know anything about it? I don't think it counts as a certification proper, but it might be good to show employers what I'm interested in and that I've already put in some work.

[–] Nomecks@lemmy.ca 1 points 2 months ago

You need five years of experience in cybersecurity, or sponsorship from another CISSP to get certified. NIST and ISO are followed by lots of companies, and ISA-62443 is a big one for OT cyber.