From Security Testing to SDE - Career Suggestion
Hi Folks, I am a penetration tester having 7 years of experience. Though I am doing pretty well in my current role, I am not feeling the impact it creates. Security is seen as a support function and does not bring real value other than audit reports for the sake of regulatory requirements. Building something gives the real impact on thousands of customers. I want to switch to SDE roles, willing to put whatever the effort it takes. Suggestions please.
Why not switch to redteam role? Or even application security engineer.
I know pentesters usual work in mncs is to just run va scans from nessus/nexpose
Skylar
Stealth
3 months ago
Redteam again, you may spend hours of efforts to find a vulnerability, if luck favours you, you will get a critical or high vulnerability. Otherwise, you will have to report the low hanging fruits which are seen as not worthy.
Skylar
Stealth
3 months ago
Fortunately, i am not running automated scanners and wasting my time. We find bugs manually
dragon
Stealth
3 months ago
I haven't seen security being considered as a support function. I am very proud to be in the cybersecurity field.
It is the most important area according to me and only people with good knowledge of all technologies get in this field.
Mostly what I have seen the management and work culture for sde roles is very bad as compared to cybersecurity roles. We usually have a chill environment
dragon
Stealth
3 months ago
Yeah they might be doing
I was talking about pentesters and security engineers
Skylar
Stealth
3 months ago
Could you please explain?
A lot of individuals in product security teams have chill work with routine tasks. Most of them are in this state where to go in the near future (including me..!)
Discover More
Curated from across