1. Cyber Security roles without coding or scripting requirements & 2. CISM vs CISSP?

MaxPayneXL

1. I am in my 40s, and my background is in IT Support and manual QA - around 10+ years. I doesnt have any coding or scripting skills or experience, even though I have done academic s/w dev projects and know concepts like OOPS etc. Which cybersecurity roles would suit me?
2. Considering the above which certification would suit me better - CISM vs CISSP certification? I have CompTIA Security+ and CySA+ certifications already.

Thanks...

Daith

It depends on the role. A lot of cyber security roles will be more about threat hunting, incident response, etc. This might/probably require scripting skills. Some roles are more "organisation security", adhering to various standards, risk analysis, etc. This tends to be what standard Windows Sys Admins move on to. Some might need both.

CISM and CISSP are helpful. CISM for more the managerial side though. Lots of people have both though.

It really depends on the role tbh.

HeatherSan

For cybersecurity roles without coding, I’d recommend looking into positions like security analyst or risk management, which focus more on monitoring, assessing, and securing systems. As for certifications, both CISM and CISSP are great, but CISSP is often seen as more comprehensive and tends to open up more senior roles in security management. That said, since you already have Security+ and CySA+, it sounds like you’re well on your way! Also, if you’re into network testing, I’ve been looking into using a premium ip stress test tool to really push my network’s limits. It’s a great way to evaluate system performance without heavy coding.

MaxPayneXL

I have certified in CompTIA CASP+ as well. Also started preparing for ISACA CISM.

https://www.boards.ie/discussion/comment/122992900#Comment_122992900

Also do you mean PenTesting by referring "network testing" in the above post?

I would like to gain some coding skills in Python or something useful. I know the OOPs concepts but unable to put that knowledge in to actual coding. I have seen direct coding mentorship by some training firms in Dublin. Is it worth doing it that way?

Hotblack Desiato

Sorry Max but that's a spambot who's reopened your thread after nearly two years. The generic AI text and the link selling something are the giveaway

I would expect a pen tester to have coding/scripting skills. Javascript. bash and Powershell at least. I'm not a pentester, but I do procure pentesting.

Daith's post is spot on, an awful lot of IT security roles now revolve around risk management, policies, standards, compliance, etc. which to me is more in the data protection, or possibly even HR(!!) ballpark rather than IT, but maybe that's just me, and it seems ICT departments are getting stuck with this whether they like it or not. Opportunities in this space for sure.