User is no joke! User is important!

--Originally published at The shield of the world

So imagine your connection to your bank is not assured… I will be pretty mad and you? Hope you too, but there are some things web pages could do to help us trust in their web site. You may hear the phrase “Is like taking a candy from a baby” or something like that… I know the phrase in Spanish. But we are the baby in this big world called Internet. And we need some protection dude!

So, how is the Internet helping us to keep the candy and not help others to rob us? One of the measures that are being implemented are the HTTPS connections to the web pages. When you enter Facebook and your bank page, you will see a green lock aside from the address. This mean the page is secure and that your connection is private. You can even see the certificate that proves that the page is secure.


And also, you can check the valid dates of the certificate and who emitted it.


So, this is a good start for looking for our own security. Another good way to protect ourselves is with a publicity blocker. Like Adblock, some curious users may clic every link they see. This is one of the first reason why they are full of Malware and with a slow equipment.

When people think about web security, all of us think about how to protect a website. But is important to remember ourselves, how do we protect ourselves in this cold cold world. Using protected WiFi networks is another good example of how an User can improve his own security.


Most of the advice we have already talked about them in another posts, you may be careful about the links you clic, about the emails you open, about where do

Continue reading "User is no joke! User is important!"

Papelito habla!

--Originally published at The shield of the world

So there are a lot of options to actually certificate yourself as an computer security. Why is important to have a certificate? To actually prove that you have a good amount of knowledge and that you are worth to be hired. Is like the certificates in the web pages. A prove that you can actually trust in something.


So there are a lot of certificates some of the most popular are:

  1. Comp TIA Security +
  2. CEH: Certified Ethical Hacker
  3. G SEC: SANS GIAC Security Essentials
  4. CISSP: Certified Information Systems Security Professional
  5. CISM: Certified Information Security Manager

In this list provided by InfoSec, there are entry-level credentials, like Security+ and GIAC Security Essentials, as well as more advanced certs, such as the CEH, CISSP and CISM.

So as an advice from there guys getting a certification is a good bet if you actually want to advance your career in the IT field and if you are interested in specializing in security.


Is important to know that there are a number of tracks a professional can take to demonstrate qualifications. Four sources categorizing these, and many other credentials, licenses and certifications, are:

  1. Schools and universities;
  2. “Vendor” sponsored credentials (Microsoft, Cisco)
  3. Association and organization sponsored credentials
  4. Governmental body sponsored licenses, certifications and credentials

Is important to know that the quality and acceptance of the IT credentials vary worldwide as you may imagine. Like passing from a Master degree, to Microsoft certification, to a list of lesser known credentials.

So, getting a certificate is a good option and probably the best is to go for a entry level known course or certification to have the quality and acceptance in every country. Probably some of them are really useful in your country because they are known, but this may not happen in other countries.


Continue reading "Papelito habla!"

You been certify!

--Originally published at Don't Trust Humans, Trust Computers


Cyber security is a huge field, with a lot of people “pretending” to be hackers. In today’s world, anybody that has a computer and can crack something thinks he/she is a hacker and can break anything; when in reality we know that isn’t true. But not all the hackers out there are “fake”, there are hundreds of people that are really good in security topics and have a vast knowledge about it. To all those people that are good and want more, there exists security certificates that can help them, make the next jump and get an excellent job.

Computing security is one of the best paid jobs in the computer science area, and if you are interest in security maybe getting one of this certificates may help you get further. There are many certificates that you can get, here I will show you some of the most recognize certificates there exists.


GIAC Security Essentials (GSEC)

The GIAC Security Essential certification focus on the skills a person has towards IT systems with respect of some security tasks. The knowledge the candidates have of security topics need to go beyond simple terminology and concepts. There aren’t any prerequisites to take the exam. The exam consist of 180 questions, and you need to answer correctly at least 73% of the test.

Certified Information Systems Security Professional (CISSP)

This certificate is for candidate that have more experience in the cyber security field. The candidates will need to prove their technical and managerial skills, as well as, their experience designing and implementing security programs. Some of the prerequisites this certificate  have are: a minimum of 5 years of work experience in 2 of the 8 domains of the CISSP Common Body of Knowledge. The exam has a total of 250 questions and to

Continue reading "You been certify!"