Change jobs…
Next 5-10 years people will be getting paid
Security Consultants at most of the major companies easily do 110-150k with room to move up to senior/principal/principal managing.
At the moment that’s my plan. Gonna stick it out here a little while longer while the training dollars are flowing and while my resume builds up a bit. There are opportunities in this area for me I just need to be patient.
Do security consultants basically just have a checklist so-to-speak of stuff to look for? Starting from like password requirements and moving up to like firewall intrusion persay?
Depends what your doing.
Vulnerability assessments
PCI/HIPAA/NERC etc are check lists usually involves a discovery process/interviews with various staff members backed by an automated tool such as nessus or nexpose.
Penetration testing is a grey area it depends on the scope of the project on one end you have red teaming(aka here is the name of the company no other info now break in) on the other end very limited scope a few IPs and they say try to break in.
There are a number of methodologies such as The Penetration Testing Execution Standard
The team im on now is pretty flexible we might do code review, wireless assessments, phishing, web app hacking, host configuration review, and internal/external pentests all in the same month.
Basically we break stuff and hold the clients hand making them understand where they have the most exposure to attack.
Hopefully, we still dont have 4g and my phone is LTE. I called and complained after having service with them for 14 years all I got was $125 credit. Fucking sprint sucks right now, internet blows on my phone. I have a HTC Evo 4GLTE and the internet works when it wants. Im calling back. Why the fuck have I been paying $10 a month for " 4G service" for the last two years and haven’t got shit yet. They says its for premium data, I was not told that when I had to sin up for it with my old Palm pre. Fucccckkkkkk
yeah, they all of a sudden added on a $10/mo “data package fee” for the smartphones like 2yrs ago. I also hate what they did to the upgrade procedure. Used to be 2yrs to the damn DAY you got your last phone/signed contract…now it’s longer than that for some fucking reason. I got my Galaxy S back in February of 2011 and Sprint.com says I’m not eligable for upgrade until JUNE!?!?!? My phone is on it’s last fucking legs, no god damned way it’s going to last until JUNE. I’m considering grabbing a Galaxy S2 on ebay for like $175 to tie me over to the end of my contract and then shopping around for a better plan/company. With the SOFTBANK merger/purchase, Verizon will be the only one of the top three wireless companies still ran/owned in the USA.
I do get cracked up at how some security companies work. They just bring a laptop with a bunch of tools and check lists. I watched an audit at a friends company and the contractor was a joke. Just ran simple tools to test some things. Didn’t really understand what he was doing other than to run tools and print reports. Amazing.
I know the bigger and more reputable companies are much more skilled but the broadness of that field is turning into the new “I know computers” field.
They probably charged at least $150/hour for the work too. Oh look we ran a nessus scan and found a few MS patches missing. Now pay up.
Maybe I should start my own company. Seems that competency is not a required skill for making money anyway.
Lots of companies require a 3rd party security assessment which in a lot of cases is just running tools…
hey if you can do that and charge 200-300 a hour why not 
$150 is cheapppp even local Buffalo companies are billing at that rate for server/network rate.
And scanners don’t look at things in context either - From LOW to PWNED [0] Intro Carnal0wnage - Blog Carnal0wnage Blog
I could go on and on about vulnerability scanning, its effectiveness, quirks and how to handle the different levels of vulns… I don’t even want to get started. There are SOOOOOOOO many caveats. Folks really need to understand that it’s just 1 tool in the box. sigghhhhhhhh
So back to Android, I just bought my wife a digital camera (babies break everything) and it is running android. I know it is a Nikon, but I do not know the model number off hand.
Everytime people talk about JB update all I think of is jail bait
So Google Now is annoying as shit. Between reminding me of the score 50 times in the 3 days following a bills loss and telling me I can be home from work in 13 minutes at 8:07AM every damn day, this thing makes me want to punch a kitten. Seriously though, once the “cool new feature” wears off Google Now is useless and annoying.
I wish it was more useful while traveling but its not 
All it does is tell me estimated commute times and weather. I don’t care enough to go into it and set up other alerts and stuff so I basically don’t use it either…
It’s cool but not having data service on the Nexus 7 really limits it.
I find the traffic feature useful when there is an accident on the way home. I simply check it on my way out, and confirm that traffic is good or if I should take another route. The weather widget in it is decent I guess. If they expand on it, maybe it will become something cooler. If not, it’ll just be one of those ‘meh’ features.
Don’t use the word jailbreak for Android. Jailbreak essentially breaks you out of the user sandbox on an Apple device and iOS. Android actually roots it since you get the ability to load full OS and custom ROMs including new modem firmwares and such.
Lol he meant jelly bean
Stupid Apple fanboy