Name: Jae H. Moon
Title: Sr. Systems (Linux/IA) Engineer
Employer: Cray, Inc.
Location: Salt Lake City, Utah, U.S.A.
Degree: Master’s degree in Information Systems (emphasis on information security)
Years in IT: 16+
Years in information security: 10+
Cybersecurity certifications: CompTIA Security +, SSCP

 

How did you decide upon a career in cybersecurity?

I had the opportunity to work as a summer intern at Scott Air Force Base in Illinois for the Department of Defense. I also worked as a Unix System Administrator for AT&T (after graduating from college) which focused heavily on implementing various information security principles and practices to maintain their operating systems. These two opportunities allowed me to explore the field of cybersecurity.

Why did you get your SSCP^®?

I felt that the SSCP was more appropriate than the CISSP for my current career choice. As you know, the SSCP covers seven (technical) of the ten CISSP domains and I wanted a certification that would impact my career immediately.

What is a typical day like for you? 

I spend the day looking at various potential and/or real vulnerabilities across our environment, determine the risk(s) and what components are essential to mitigate the risk(s). We also look at current configuration files and determine, if any changes are needed to improve the overall security posture. I also help write or update current information about security policies and guidelines.

Can you tell us about a personal career highlight? 

I worked full-time at AT&T as a Systems Admin / Analyst while I was pursuing my degree part-time. Our group was broken into three sections: OS administration, Web Application Development and Support and Information Security. I supported several mission-critical enterprise systems and verified that each system adhered to AT&T current information security policies and procedures. In other words, I was able to use vary scripts to verify that each system had correct security configurations in order to comply or meet audit requirements, such as, SOX. Getting this kind this kind of work experience allowed me to pursue my current position today. 

Work experience that parallels your degree and certifications makes you a valuable asset to your current company.

How has the SSCP certification helped you in your career?

The SSCP and my graduate degree have allowed me to be a part time adjunct instructor at LDS Business College in Salt Lake City, Utah. I teach “Cyber Security Fundamentals.”

 

What is the most useful advice you have for other information security professionals?

Some information security professionals have a difficult time answering technical questions during job interviews, since they do not have a lot of real work experience. One should find a job that matches their career pursuits, even an entry level position, to get good work experience to complement their certifications. Be patient in your career pursuits and enjoy the journey!

 

For more information on the Systems Security Certified Practitioner certification, download our Ultimate Guide to the SSCP .