Start networking and exchanging professional insights

Register now or log in to join your professional community.

Follow

Why is it so hard to have a job as InfoSec engineer in UEA and Saudi, if you live outside the country?

I've been trying to apply so many job opportunities that I found on Bayt, but still have no response, even a single response. Any suggestion?

user-image
Question added by Mada Rambu Perdhana , Various , Various
Date Posted: 2013/08/04
Ahmad Yassein
by Ahmad Yassein , Infrastructure Network Manager , Ministry of International Cooperation (MIC)

You really don't know why? You really care to know the truth?

 

Well, in that case, the answer is because you are not caucasian. And caucasian means american or european. This is the first measurable factor of not being hired in such a dangerous career. Ordinary humans like yourself and I, are placed in a less daunting career such as network administration or even a help desk. Unfortunately, certs will not serve you well without backing yourself up with a solid INFOSEC experience. So, beleive it or not, i've been certified in microsoft and cisco security since2004, hoping to get a job in INFOSEC. All i got was a job in Qatar as a network support engineer even though my resume stated several security certs. So, whether you it like or not, Rule #1 in gulf countries is what is your nationality and race.

Don't get shocked by my answer but this is a truth that you have to live with it in gulf countries.

The second reason is, Bayt. :) Being a member for7 years and haven't got a single interview or offer though it, which is odd. Employers view your profile and nothing happens. When you wakeup the next day, you find that the views are increased but again nothing happens. When you wakeup the next month, you find that the job opening is closed already. I don't understand why this is happening but i've built a nice looking online profile and resume.

 

 

Mada Rambu Perdhana
by Mada Rambu Perdhana , Various , Various

Agree with that, but as my experience, certification did not help that much on practically, see how anonymous and lulzsec hits so many biggest company that we are sure they have alot of cissp, cisa etc you name it behind their system? so that's why some people then throw their cert even some burn it out as a n act of protest :) they pay much but they don't have those qualification that can really secure their system.
Now take an easy sample, how may cissp and other expesive and exclusive certification had the ability of exploit/vulnerability development, as OSCP and OSCE had? and again what it the main problem of Threat that come from risk? yes, vulnerability, and does the exploit/bug hunter out there have those expensive cert ? No, are those people could be a threat? yes, could a certified person with monthly/yearly fee of membership could really protect their system secure from those people? NO.
So many exploit found on Widnows system and used by malware developer are not from certification community :) Beg you sorry for my word, no hurt feeling, just want to show my opinion.
Just for example, some of the company which open for a vacancy with those 'awsome' certification requirement, already penetrated by me, illegally? yes, but just to show that you need a practical person not a certificated person :) to secure your company, Cheers.