I am considering switching careers to Information Security. The only school in the area that has it as a degree is Regis. Problem is that there are two degrees and I’m not sure which one I should pursue
BS in Computer Science
Pros: General CS degree
ABET accredited so theoretically I could use it to become a patent attorney
Cons: Except for one class, there is no real class on cybersecurity
BS in Cybersecurity
Pros: Very heavy in IS
Cons: It is a “professional” degree not an “academic” degree like BS in CS is
Does that matter in the IS field?
Will it be considered to not be a computer science degree if, for example, I want to get a master’s or apply for certification?
Bottom line will get me a job in IS. Will one lead to a better job or be more easily hired?
And if there is a master’s in CS - Cybersecurity available how would that affect my options?
It really depends a lot on what type of experience you bring to the job. What are you doing now? Do you have any IT experience or certifications currently? I can tell you that in our IS shop, an applicant with a degree or cert but no experience is not going to move right into a decent IS job. You would probably start in provisioning or other AD tasks to gain experience if there were openings. These don’t exactly pay a lot.
I work in security, and either of those degrees would be fine for some roles in our organization. I agree with JXJohns that experience is much more important that the degree. Getting some internships or practical experience on open source software projects would make you stand out more than either degree.
My impression is that IT security jobs are all the rage in the marketplace these days. I’d go the cybersecurity route if you’re looking for the most marketable degree. However, I think you’ll find that experience is generally viewed more positively than degrees / certifications by potential employers.
Don’t discount this.
I’m an IT guy. There’s not a day that goes by that I’m not reaching back into DOS to do some things on a computer, or use it to program a router. Sometimes, its just much much simpler to do it in dos commands than to try and do it on a GUI screen.
LOTS of banking systems and legacy infrastructure still needs someone to handhold it.
To the OP, it depends on what I’m hiring for. If its a generalist that will also do CS, then the first degree. If its a CS specialist, then the second degree. In general, the first one gives you a wide base to build from, and maybe you find that you love love love networking and the transport layer. If you already know you love security issues, then do the second one, and see if it meets your professional needs.
Information Security covers a lot of ground. What kind of work do you actually want to do?
I am a manager at a federal contracting company and I am trying to hire a senior security architect right now. This is someone who will work with our architect and software developers to assess security vulnerabilities and ensure best practices. Also will interface with our government ISSOs, and develop federally required documentation (SSP, PIA, Contingency Plan, a few more). I don’t care what kind of degree they have if they have the right experience, although we do prefer CISSP certification.
Other positions are more hands-on, maybe Security+ is a good certification.
Either degree should be fine for going on to a master’s, or any certification.
At an old job (I was a network admin there) we had a young guy who got his degree in cybersecurity and then interned with us for half a year. A smart guy who knew his stuff but he had no professional experience.
After his internship was done he went right to Washington DC (I think for a government contractor), he was making serious money doing what he loved. A little experience helps immensely.
Infosec is a big field, ranging from less technical things like regulatory compliance and third party risk assessment, to more technical specialties like pen testing and malware reverse engineering. So, it depends somewhat on what direction you see yourself going.
What is your current job?
If you want to quickly get into the infosec field, the degree in cybersecurity is probably your best bet, but as mentioned upthread, it is important to get good internships and projects.
You said you’re looking at Regis because it’s close. There are a ton of online programs too, so you might consider that option. I teach in the cybersecurity program at a university that offers online and on ground options. Then there are places like Western Governors University, which I believe is all online. My university, like WGU, is an accredited, non profit school, so we’re not out solely to screw you.
If you’re currently in the IT field, consider trying to weasel your way into something security related and start getting certifications. That’s how I got into the field, although that was some years ago and the market has changed. But that could still be a good way to go.
Depending on where you are, you might be able to take advantage of an apprenticeship program. Several of these have sprung up as a way to get people without a college degree into the field. They’re modeled after the apprenticeships in skilled trades. You work through an organization that acts as a clearinghouse for apprentices, and you get matched to a company that will train you for a year or some other period of time. I’m on the board of directors at one such organization (in the St. Louis area). I know there are similar organizations around the US.
I hope that helps. Feel free to PM me and I’ll shoot you my contact info if you want to chat.
Lots of our roles would require advanced degrees. But in general, we have lots of general engineering positions that either degree would be fine for. Positions that require specific security knowledge, like architect or security analyst might be better suited for the cybersecurity degree. But again, a lot of the engineers in those positions have advanced degrees and considerable experience.
If I were interviewing you I’m not sure how much time I’d spend on your degree. I’d be much more interested in your experience. Without significant experience or an advanced degree you may be looking at an entry level position, and as long as you had a grounding in the field we could train you on specific skills that are needed.
In the government sector where I work the degree doesn’t matter as long as you have it. Jobs are now categorized by role and level, e.g. a job may require an “Information Assurance Manager (IAM) Level 2” certification. You can view the chart of levels and associated certifications here. While this applies to all contractors working on government systems, I doubt this model extends to jobs that are solely private sector.
Based on that, I’d say if you think the IS degree will actually teach you stuff that will help you with a CISSP down the road, go for that. Otherwise go for the degree that will get you in and out the fastest.
-steronz, who couldn’t even tell you what his degree is in without looking it up. CIS? MIS? CS? That’s the fun!
