How to learn information security
by Kai Roer - Senior Partner, The Roer Group - Tuesday, 29 April 2014.
5. Never stop learning

Some people seem to think that when school is out they don't need to ever learn again. This is a wrong assumption - especially in infosec, where you need to be constantly on the alert. If you ever want to be good at anything, even if you are highly skilled by birth, you cannot stop learning - either by attending classes, researching new topics or just by doing something new. There are a number of ways to learn, and the topics are limitless, so why limit yourself?

You may think that in order to learn more about infosec, you should only learn things that are of relevance to infosec. But I disagree. Learning new things - no matter what they are - keeps you sharp. Set out to learn something new every week - it can be a simple thing like cooking a new dish, or something more advanced (for some) like building a robot. Connecting cooking to infosec is not that difficult: food security (cleanliness, ingredients, treatment, etc.), applying a method/best practice (using a recipe, tools, etc.), creativity (experimentation, figuring out what works best) are all easily "translated" to both learning and to infosec!

6. Apply the learning process that works best for you

Studies shows that the best students are those who adopt a good structure for their learning. There are a number of best practices out there, so I will only cover the main ones:
  • A strict schedule: reserve time to study, and follow the made schedule!
  • Work with the materials: read, write, answer questions, do the tasks, practice.
  • Practice tests: Spend time learning how to work the test. If it's a written exam, do mock exams. If it's a multiple choice test, run a demo.
  • Motivate yourself: Write down a personal goal, a reason for your learning, and put it in a prominent place to remind yourself. Also reward yourself when you reach milestones.
As long as you keep on pushing yourself towards more knowledge, more understanding, more learning, you are helping the infosec community to evolve and grow.


VPN protocol flaw allows attackers to discover users' true IP address

The team running the Perfect Privacy VPN service has discovered a serious vulnerability that affects all VPN providers that offer port forwarding, and which can be exploited to reveal the real IP address of users.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Mon, Nov 30th