Currently in IT helpdesk (24) and looking to break into cybersec. I've noticed GRC roles are way less saturated than other junior positions right now.
My question: if I take a GRC role to get my foot in the door, how realistic is it to transition to more technical roles like pentesting/red teaming or security engineering down the line?
Does GRC give you enough technical exposure to make that pivot, or would I be pigeonholing myself into compliance work? I have heared that you can get technical on GRC work but obviously not much as other roles.
Anyone here made that transition or have insights on the technical skills gap between GRC and offensive/engineering roles?
TL;DR: Will starting in GRC lock me into compliance, or is it a viable path to more technical cybersec roles?
[link] [comments]
from hacking: security in practice https://ift.tt/457ISPU
Comments
Post a Comment