{"product_id":"it-security-interviews-exposed-isbn-9780471779872","title":"IT Security Interviews Exposed","description":"\u003cul\u003e \u003cli\u003eTechnology professionals seeking higher-paying security jobs need to know security fundamentals to land the job-and this book will help\u003c\/li\u003e \u003cli\u003eDivided into two parts: how to get the job and a security crash course to prepare for the job interview\u003c\/li\u003e \u003cli\u003eSecurity is one of today's fastest growing IT specialties, and this book will appeal to technology professionals looking to segue to a security-focused position\u003c\/li\u003e \u003cli\u003eDiscusses creating a resume, dealing with headhunters, interviewing, making a data stream flow, classifying security threats, building a lab, building a hacker's toolkit, and documenting work\u003c\/li\u003e \u003cli\u003eThe number of information security jobs is growing at an estimated rate of 14 percent a year, and is expected to reach 2.1 million jobs by 2008\u003c\/li\u003e \u003c\/ul\u003e  Acknowledgments.  \u003cp\u003eIntroduction.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1: Finding, Interviewing for, and Getting the Job.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eQualifications.\u003c\/p\u003e \u003cp\u003ePursuing a Degree.\u003c\/p\u003e \u003cp\u003eThe Perfect Job.\u003c\/p\u003e \u003cp\u003eJob Search.\u003c\/p\u003e \u003cp\u003eInterviewing.\u003c\/p\u003e \u003cp\u003eMoney Talks.\u003c\/p\u003e \u003cp\u003eAccepting or Rejecting the Offer.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eNontechnical Interview Questions.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2: Knowing Networks: Fundamentals.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction.\u003c\/p\u003e \u003cp\u003eQuestions.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3: Knowing Security: Fundamentals.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eAdjust Your Thinking.\u003c\/p\u003e \u003cp\u003eCore Values.\u003c\/p\u003e \u003cp\u003eBasic Concepts.\u003c\/p\u003e \u003cp\u003eManaging Risk.\u003c\/p\u003e \u003cp\u003eData Classification and Labeling.\u003c\/p\u003e \u003cp\u003eEthics in Information Security.\u003c\/p\u003e \u003cp\u003eDaily Security Responsibilities.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eInterview Q\u0026amp;A.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4: Understanding Regulations, Legislation, and Guidance.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eRegulations, Legislation, and Guidance Defined.\u003c\/p\u003e \u003cp\u003eWhy Does an Employer Care?\u003c\/p\u003e \u003cp\u003eWhy Should You Care?\u003c\/p\u003e \u003cp\u003eGovernment- and DoD-Specific Information.\u003c\/p\u003e \u003cp\u003eCommercial Information Security.\u003c\/p\u003e \u003cp\u003eUsing This Information in the Interview.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eInterview Q\u0026amp;A.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5: Knowing Firewalls: Fundamentals.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFirewall Technologies.\u003c\/p\u003e \u003cp\u003eMajor Vendors.\u003c\/p\u003e \u003cp\u003eDevice Types.\u003c\/p\u003e \u003cp\u003eManagement.\u003c\/p\u003e \u003cp\u003eDeployment Strategies.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eInterview Q\u0026amp;A.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6: Knowing Virtual Private Networks.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eGoals and Assumptions.\u003c\/p\u003e \u003cp\u003eThe Cryptography of VPNs.\u003c\/p\u003e \u003cp\u003eIP Security Review.\u003c\/p\u003e \u003cp\u003eImplementing IPsec.\u003c\/p\u003e \u003cp\u003eAlternatives to IPsec.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eInterview Q\u0026amp;A.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7: Knowing IDS\/IPS\/IDP.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction.\u003c\/p\u003e \u003cp\u003eQuestions.\u003c\/p\u003e \u003cp\u003eWhat Questions Do You Want to Ask Me?\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8: Everything You Ever Wanted to Know about Wireless but Were Afraid They' Ask.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Fundamentals.\u003c\/p\u003e \u003cp\u003eWireless Cards and Chipsets.\u003c\/p\u003e \u003cp\u003eWireless Drivers for Linux.\u003c\/p\u003e \u003cp\u003eWLAN Detection (WarDriving).\u003c\/p\u003e \u003cp\u003eWireless Security.\u003c\/p\u003e \u003cp\u003eRogue Wireless Devices.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eInterview Q\u0026amp;A.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9: Finding Your Posture.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHistory of Information Security.\u003c\/p\u003e \u003cp\u003eModern Information Security.\u003c\/p\u003e \u003cp\u003eSecurity Objectives.\u003c\/p\u003e \u003cp\u003eDetermining the Security Posture.\u003c\/p\u003e \u003cp\u003ePrioritizing the Vulnerabilities.\u003c\/p\u003e \u003cp\u003eVulnerability Management.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eInterview Q\u0026amp;A.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 10: Tools.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eEnumeration, Port Scanning, and Banner Grabbing.\u003c\/p\u003e \u003cp\u003eWireless Enumeration.\u003c\/p\u003e \u003cp\u003eVulnerability Scanning.\u003c\/p\u003e \u003cp\u003ePassword Compliance Testing.\u003c\/p\u003e \u003cp\u003eNetwork Sniffing.\u003c\/p\u003e \u003cp\u003ePenetration Testing.\u003c\/p\u003e \u003cp\u003eLearning.\u003c\/p\u003e \u003cp\u003eSummary.\u003c\/p\u003e \u003cp\u003eInterview Q\u0026amp;A.\u003c\/p\u003e \u003cp\u003eRecommended Reading.\u003c\/p\u003e \u003cp\u003eAdditional Resources.\u003c\/p\u003e \u003cp\u003eIndex.\u003c\/p\u003e \"The book is readable and written in a light, witty style\". (\u003ci\u003eInfo Security\u003c\/i\u003e, September 2007)  \u003cb\u003eChris Butler\u003c\/b\u003e (CISSP, JNCIS-FWV, JNCIA-SSL, CCSE, IAM\/IEM) is a Senior Solutions Architect with Intellitactics. Chris has more than a dozen years of experience in the networking and security fields. He is a veteran of the United States Navy, where he worked in the cryptography field. Chris has designed, implemented, and supported some of the largest networks in the country for large insurance companies, investment firms, software companies, service providers, and pharmaceutical companies. He has also provided network and security consulting services for numerous U.S. government agencies, including the Department of State, Department of Defense, and the Department of Energy. He has worked extensively with the leading security and networking vendors throughout his career. He is also well versed in both commercial and open source network and security management software. Chris has also performed in-depth application analysis and network modeling using OPNET software for dozens of large companies. He is a member of the IEEE Computer Society and SANS.  \u003cp\u003e\u003cb\u003eRuss Rogers\u003c\/b\u003e (CISSP, IAM\/IEM) is a Senior Cyber Security Analyst and the former CEO and co-founder of Security Horizon, Inc. Russ is a United States Air Force veteran and has served in military and contract support for the National Security Agency, Defense Information Systems Agency, and the other federal agencies. He is also the editor-in-chief of \u003ci\u003eThe Security Journal\u003c\/i\u003e. Additionally, he serves as the Professor of Network Security at the University of Advancing Technology (uat.edu) in Tempe, Arizona. Russ is the author, co-author, or technical editor for nearly a dozen books on information security. Russ has spoken and provided training to audiences around the world and is also a co-founder of the Security Tribe information security research Web site at www.securitytribe.com. His education includes a bachelor’s and master’s degree from the University of Maryland in Computer Science areas.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eMason Ferratt\u003c\/b\u003e (JNCIS-FWV, JNCIA-M MSEE, BSME) is a Federal Systems Engineer with Juniper Networks in Charleston, South Carolina. He has performed large-scale network security engineering for numerous government clients. His most recent work involves the Department of Defense medical community, where his team is responsible for the security posture of all Navy and Army hospitals and clinics in the world. His specialty is in purpose-built intrusion detection\/protection, VPN encryption, firewall, content filtering, and secure remote access devices. His prior jobs include network engineering design, modeling, and testing for the Department of State, and pre- and post-sales network engineering for several optical\/WAN vendors (Corvis Corporation, Corrigent Systems, Lucent Technologies, Ascend Communications, and Network Equipment Technologies). He holds a Master of Science degree in Electrical Engineering from George Washington University, and a Bachelor of Science degree in Mechanical Engineering from the University of Virginia. He holds a Top Secret\/SCI clearance and is an IEEE member.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eGreg Miles\u003c\/b\u003e (CISSP, CISM, IAM\/IEM) is a co-founder, President, Chief Financial Officer, and Principal Security Consultant for Security Horizon, Inc., a Colorado-based professional security services and training provider and veteran-owned small business. He is a United States Air Force veteran and has served in military and contract support for the National Security Agency, Defense Information Systems Agency, Air Force Space Command, and NASA supporting worldwide security efforts. Greg has planned and managed Computer Incident Response Teams (CIRTs), Computer Forensics, and INFOSEC training capabilities. Greg has been published in multiple periodicals, including \u003ci\u003eThe Security Journal\u003c\/i\u003e and \u003ci\u003eThe International Journal on Cyber Crime\u003c\/i\u003e. He co-authored \u003ci\u003eNetwork Security Evaluation: Using the NSA IEM\u003c\/i\u003e (Syngress. ISBN: 978-1597490351) and \u003ci\u003eSecurity Assessment: Case Studies for Implementing the NSA IAM\u003c\/i\u003e (Syngress. ISBN: 978-1932266962). Greg is a network security instructor for the University of Advancing Technology (UAT) and an advisor with Colorado Technical University (CTU).\u003c\/p\u003e \u003cp\u003e\u003cb\u003eEd Fuller\u003c\/b\u003e (CISSP, IAM\/IEM) is Senior Vice President, COO, and Principal Security Consultant for Security Horizon, Inc. He has more than 28 years of experience in operations, communications, computer information systems, and security. He is the primary lead for INFOSEC Assessments and Training for Security Horizon. Ed has served as team lead for INFOSEC assessments for more than nine years. He has served other companies as an INFOSEC Training Manager and Senior Security Consultant. Ed was integrally involved in establishing, implementing, and supporting the worldwide security program for the Defense Information Systems Agency (DISA), directly supporting Field Security Operations (FSO). He was a participant in the development of the Systems Security Engineering Capability Maturity Model (SSE-CMM) and has been a key individual in the development and maintenance of the Information Assurance Capability Maturity Model (IA-CMM). Ed also serves as a Lead Instructor for the National Security Agency (NSA) INFOSEC Assessment Methodology (IAM) and the INFOSEC Evaluation Methodology (IEM). Ed retired from the United States Navy with more than 23 years of distinguished service. Ed is a co-author for \u003ci\u003eSecurity Assessment: Case Studies for Implementing the NSA IAM\u003c\/i\u003e (Syngress. ISBN: 978-1932266962) and \u003ci\u003eNetwork Security Evaluation: Using the NSA IEM\u003c\/i\u003e (Syngress. ISBN: 978-1597490351) and a frequent contributer for the \u003ci\u003eThe Security Journal\u003c\/i\u003e, a quarterly security periodical.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChris Hurley\u003c\/b\u003e (IAM\/IEM) is a senior penetration tester working in the Washington, D.C. area. He is the founder of the WorldWide WarDrive and organized the DEF CON WarDriving Contest from its inception until last year. He has authored or co-authored several books on wireless security and penetration testing, including \u003ci\u003eWarDriving \u0026amp; Wireless Penetration Testing\u003c\/i\u003e (Syngress. ISBN: 978-1597491112), \u003ci\u003eThe Penetration Tester’s Open Source Toolkit\u003c\/i\u003e (Syngress. ISBN: 978-1597490214), \u003ci\u003eInfoSec Career Hacking\u003c\/i\u003e (Syngress. ISBN: 978-1597490115), and \u003ci\u003eStealing the Network: How to Own an Identity\u003c\/i\u003e (Syngress. ISBN: 978-1597490061).\u003c\/p\u003e \u003cp\u003e\u003cb\u003eRob Cameron\u003c\/b\u003e (JNCIS-FWV, JNCIA-M, CCSP, CCSE+) is a Security Solutions Engineer for Juniper Networks. He currently works on designing security solutions for Juniper Networks that are considered best-practice designs. Rob specializes in network security architecture, firewall deployment, risk management, and high-availability designs. His background includes six years of security consulting for more than 325 customers. He is the lead author of \u003ci\u003eConfiguring Netscreen and SSG Juniper Firewalls\u003c\/i\u003e (Syngress. ISBN: 978-1597491181) and \u003ci\u003eConfiguring NetScreen Firewalls\u003c\/i\u003e (Syngress. ISBN: 978-1932266399).\u003c\/p\u003e \u003cp\u003e\u003cb\u003eBrian Kirouac\u003c\/b\u003e (CISSP, IAM\/IEM) is the Chief Technology Officer and Principal Security Consultant for Security Horizon, Inc. Brian has more than 15 years of experience as an IT professional. Before joining Security Horizon, he served in a wide range of information technology positions in both domestic and international environments. He was a network administrator for a major university, eventually migrating to system administrator specializing in UNIX and Windows integration. He was also the Lead Technical Security Specialist at a municipal four-service utility. In addition to his current position at Security Horizon, Brian serves as an instructor for the National Security Agency (NSA) INFOSEC Assessment (IAM) and INFOSEC Evaluation (IEM) Methodologies and team member of NSA IA-CMM Appraisals. Brian’s publication history includes being a frequent contributor to \u003ci\u003eThe Security Journal\u003c\/i\u003e, being both a refereed and invited speaker for SANS, and a refereed presenter for a NASA Conference on tethered satellites.\u003c\/p\u003e  \u003cb\u003eIt's not a job. It's THE job, and here's how to get it.\u003c\/b\u003e  \u003cp\u003eWhat does your ideal IT security job look like? What will prospective employers expect you to know? What affects how they view you and your skills? What if you haven't had much experience? What if you're not 30 anymore?\u003c\/p\u003e \u003cp\u003eHere's the crash course in how to discover, apply for, and land the IT security job you want. Written by a squad of highly credentialed security professionals, this guide prepares you with the technical knowledge, interview skills, strategies, and job search techniques you need to find and get the perfect job.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eMeet every job search challenge\u003c\/b\u003e\u003c\/p\u003e \u003cul\u003e \u003cli\u003eWhat does — and doesn't — belong on your résumé\u003c\/li\u003e \u003cli\u003e \u003cp\u003eHow to survive a telephone interview\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eAll about firewall technologies, devices, deployment strategies, and management\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eA review of security essentials, regulations, legislation, and guidelines\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eThe effects of state cyber security laws, Sarbanes-Oxley, and international standards\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eA refresher course in network fundamentals\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eEverything you should know about wireless, security posture, and tools\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eWhen and how to say \"no\"\u003c\/p\u003e \u003c\/li\u003e \u003c\/ul\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989484159205,"sku":"NP9780471779872","price":29.99,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9780471779872.jpg?v=1761784286","url":"https:\/\/k12savings.com\/products\/it-security-interviews-exposed-isbn-9780471779872","provider":"K12savings","version":"1.0","type":"link"}