securingdev / infosec_mentors_project

Building a community for those that both seek and wish to provide mentorship in Information Security.
GNU General Public License v3.0
19 stars 9 forks source link

Add Red Teaming as a category #38

Closed droptableuser closed 6 years ago

droptableuser commented 6 years ago

Red Teaming needs a specific set of skills which are not covered by the other categories available.

securingdev commented 6 years ago

Thanks for submitting your pull request! 😊

I'm hesitant to add this "as-is", because I agree with you that Red Teaming does take a specific set of skills. It might make more sense to merge that larger set of skills into the list that are not otherwise covered currently, rather than merge it as a block summary of "Red Teaming".

With that said, it's entirely possible I could be talking out of my @$$ here 😅 if you feel there's another category that's been given this treatment that you can point to within the application, then I'm happy to eat-my-text and merge this as-is.

What are your thoughts @droptableuser ?

droptableuser commented 6 years ago

Thanks for your feedback.

I gave that some thought before submitting. Personally, I would have trouble finding someone for a more specific skill if I do not know that I would need that specific skill, which is were the super-category "Red Teaming" would come in. I would be hard pressed to list all the sub-skills, but if needed will provide all I can come up with additionally.

In my humble opinion e.g. "Network Security" is a super-category for "Packet Analysis", "Intrusion Detection", and maybe even "Configuration Management" and "Threat Intelligence" with at least a good degree of overlap.

This holds true for other categories as well: "DevOps" -> Windows/Linux administration, "Software Development", "Configuration Management" "Security Competitions" -> "Penetration Testing", "Reverse Engineering",... "Security Management" -> "Risk Management", "Incident Response",...

While each super-category does not mean to master all of it's sub-categories at least a general understanding of the core principles should be achieved.

Happy to hear your response.

securingdev commented 6 years ago

You make a fair point! Going to be merging after one more quick review of the pull request 😉

securingdev commented 6 years ago

I'm going to leave this open until I merge it into production later this week 😊 👍