undefined | Better HN

0 pointsqualudeheart4y ago0 comments

Pentesting is much more saturated than defensive security is. Everyone wants to be a hacker.

0 comments

2 comments · 1 top-level

the_only_law4y ago· 1 in thread

What does “blue team” stuff typically include. A lot of the security people I’ve worked with in large enterprises just run canned tools, configure appliances or think about compliance stuff and then fill out a shit ton of paperwork. Makes sense why everyone wants to go offensive in that case.

rsj_hn4y ago

The trick is to find a company that has to take security seriously, and then that company will have some meaningful blue-team work even though there is an ocean of tool running, compliance paperwork.

So for example, Microsoft, Google, Amazon, they all have good product security teams that do meaningful stuff, where "meaningful stuff" is defined as:

- design and development of security features and defense mechanisms

- design reviews, code reviews

- innovative tool development (as opposed to just running)

- development and improvement of Big data/statistical analysis

You just have to find a team actually doing that, and not a team doing compliance stuff. But there are such teams.

j / k navigate · click thread line to collapse