Pareri per nuova proposta lavorativa

Salve a tutti, scrivo come per chiedere parere su una proposta di lavoro che ho ricevuto di recente.

Qualche giorno fa ho concluso il colloquio tecnico e ora ho un quadro più chiaro, quindi vi chiedo un consiglio.

**La mia situazione attuale**

Ho 25 anni e da circa un anno lavoro in un'azienda relativamente grande che opera anche nella sicurezza informatica.

Sono in una BU Microsoft, verticalizzato sulla parte security dello stack (M365, Azure e AD) con la possibilità di lavorare sporadicamente su altri progetti che mi interessano, come l'incident response per ambienti AD e M365.

Mesi fa ho chiesto di partecipare più attivamente alle attività di penetration test, un ambito che mi interessa molto e che potrebbe aprirmi diverse porte.

Per dimostrare la mia motivazione ho anche studiato e ottenuto una certificazione per conto mio, ma nonostante i solleciti al responsabile della BU pentest non sono mai stato coinvolto in nulla di concreto.

Con la posizione attuale ho 22k di RAL, buoni pasto da 8€, 5 giorni su 5 in presenza con ufficio a 40 km da casa (80 km al giorno tra andata e ritorno).

**La nuova proposta**

Si tratta di una posizione esclusivamente verticale sulla sicurezza Microsoft, ma in un ruolo consulenziale dato che gestirei un portfolio di clienti a cui spiegare cosa fare (in condivisione schermo), redigere report e proporre nuove soluzioni. Non farei più nulla di direttamente tecnico e operativo almeno non come prima dove andavo direttamente a incident o alert con Defender, ma darei solo supporto ai clienti o ai loro SOC.

Con la nuova proposta avrei circa 30k di RAL, buoni pasto da 7€, contratto ibrido ma di fatto full remote salvo qualche trasferta sporadica nella sede di Milano.

**Il mio dubbio**

Sulla carta la nuova proposta sembra conveniente anche solo per il vantaggio economico e logistico.

Il mio timore però è di abbandonare una posizione che in futuro potrebbe farmi diventare una figura più ricercata per un ruolo che rischia di "bloccarmi" dato che se un domani volessi fare Penetration Test, Threat Hunting o Incident Response temo di essere escluso per mancanza di esperienza pratica e trasversale su più ambiti.

Credo che potrei comunque ripiegare su ruoli come Security Engineer per ambienti cloud, ma non vorrei escludermi nulla.

Chiedo quindi per quella che è la vostra esperienza, un ruolo del genere può essere vantaggioso nel lungo termine o mi conviene restare dove sono e sperare di trovare altro in futuro?

reddit.com
u/cyberLog4624 — 15 hours ago

Should I accept this new job offer

Hey there everyone, I'm writing to ask an advice about a job offer I recently received. Yesterday I finished the technical interview and now have a clearer picture, so I'd like to ask for your advice.

My current situation

I'm 25 and I've been working for about a year at a relatively large company that also operates in cybersecurity.
I'm in a Microsoft BU, specialized in the security side of the stack (M365, Azure and AD), with the chance to occasionally work on other projects I'm interested in, such as incident response for AD and M365 environments.

A few months ago I asked to get more actively involved in penetration testing, a field I'm really interested in and that could open several doors for me. To show my motivation I even studied for and earned a certification on my own, but despite repeatedly following up with the head of the pentest BU, I've never been involved in anything concrete.

My current position is fully on-site, 5 days a week, with the office 40 km from home (an 80 km round trip every day), and the pay is on the lower end.

The new offer

It's a position focused exclusively on Microsoft security, but in a consulting role: I'd manage a portfolio of clients, telling them what to do (via screen sharing), writing reports, and proposing new solutions. I wouldn't do anything directly technical or hands-on anymore or at least not like now, where I work directly on incidents and alerts with Defender but I'd only be supporting clients or their SOCs.

The new position offers noticeably higher pay and is hybrid on paper but essentially full remote, apart from the occasional trip to the Milan office.

My dilemma

On paper the new offer looks appealing, if only for the financial and logistical advantages. My fear, though is giving up a position that could eventually turn me into a more sought-after professional, in exchange for a role that might "lock me in": if one day I wanted to move into Penetration Testing, Threat Hunting or Incident Response, I'm afraid I'd be ruled out for lacking hands-on, cross-domain experience. I think I could still fall back on roles like Cloud Security Engineer, but I don't want to close any doors.

So, based on your experience: can a role like this be beneficial in the long run, or am I better off staying where I am and hoping something else comes along?

reddit.com
u/cyberLog4624 — 3 days ago

Should I accept this new job offer

Hey there everyone, I'm writing to ask an advice about a job offer I recently received. Yesterday I finished the technical interview and now have a clearer picture, so I'd like to ask for your advice.

My current situation

I'm 25 and I've been working for about a year at a relatively large company that also operates in cybersecurity.
I'm in a Microsoft BU, specialized in the security side of the stack (M365, Azure and AD), with the chance to occasionally work on other projects I'm interested in, such as incident response for AD and M365 environments.

A few months ago I asked to get more actively involved in penetration testing, a field I'm really interested in and that could open several doors for me. To show my motivation I even studied for and earned a certification on my own, but despite repeatedly following up with the head of the pentest BU, I've never been involved in anything concrete.

My current position is fully on-site, 5 days a week, with the office 40 km from home (an 80 km round trip every day), and the pay is on the lower end.

The new offer

It's a position focused exclusively on Microsoft security, but in a consulting role: I'd manage a portfolio of clients, telling them what to do (via screen sharing), writing reports, and proposing new solutions. I wouldn't do anything directly technical or hands-on anymore or at least not like now, where I work directly on incidents and alerts with Defender but I'd only be supporting clients or their SOCs.

The new position offers noticeably higher pay and is hybrid on paper but essentially full remote, apart from the occasional trip to the Milan office.

My dilemma

On paper the new offer looks appealing, if only for the financial and logistical advantages. My fear, though is giving up a position that could eventually turn me into a more sought-after professional, in exchange for a role that might "lock me in": if one day I wanted to move into Penetration Testing, Threat Hunting or Incident Response, I'm afraid I'd be ruled out for lacking hands-on, cross-domain experience. I think I could still fall back on roles like Cloud Security Engineer, but I don't want to close any doors.

So, based on your experience: can a role like this be beneficial in the long run, or am I better off staying where I am and hoping something else comes along?

Repost to more communities

1

2 views See More Insights

reddit.com
u/cyberLog4624 — 3 days ago

Should I accept this new job offer

Hey there everyone, I'm writing to ask an advice about a job offer I recently received. Yesterday I finished the technical interview and now have a clearer picture, so I'd like to ask for your advice.

My current situation

I'm 25 and I've been working for about a year at a relatively large company that also operates in cybersecurity.
I'm in a Microsoft BU, specialized in the security side of the stack (M365, Azure and AD), with the chance to occasionally work on other projects I'm interested in, such as incident response for AD and M365 environments.

A few months ago I asked to get more actively involved in penetration testing, a field I'm really interested in and that could open several doors for me. To show my motivation I even studied for and earned a certification on my own, but despite repeatedly following up with the head of the pentest BU, I've never been involved in anything concrete.

My current position is fully on-site, 5 days a week, with the office 40 km from home (an 80 km round trip every day), and the pay is on the lower end.

The new offer

It's a position focused exclusively on Microsoft security, but in a consulting role: I'd manage a portfolio of clients, telling them what to do (via screen sharing), writing reports, and proposing new solutions. I wouldn't do anything directly technical or hands-on anymore or at least not like now, where I work directly on incidents and alerts with Defender but I'd only be supporting clients or their SOCs.

The new position offers noticeably higher pay and is hybrid on paper but essentially full remote, apart from the occasional trip to the Milan office.

My dilemma

On paper the new offer looks appealing, if only for the financial and logistical advantages. My fear, though is giving up a position that could eventually turn me into a more sought-after professional, in exchange for a role that might "lock me in": if one day I wanted to move into Penetration Testing, Threat Hunting or Incident Response, I'm afraid I'd be ruled out for lacking hands-on, cross-domain experience. I think I could still fall back on roles like Cloud Security Engineer, but I don't want to close any doors.

So, based on your experience: can a role like this be beneficial in the long run, or am I better off staying where I am and hoping something else comes along?

reddit.com
u/cyberLog4624 — 3 days ago

Update: Should I accept this new job offer

Hey there everyone, I'm writing as a follow-up to my post from a few days ago about a job offer I recently received. Yesterday I finished the technical interview and now have a clearer picture, so I'd like to ask for your advice.

My current situation

I'm 25 and I've been working for about a year at a relatively large company that also operates in cybersecurity.
I'm in a Microsoft BU, specialized in the security side of the stack (M365, Azure and AD), with the chance to occasionally work on other projects I'm interested in, such as incident response for AD and M365 environments.

A few months ago I asked to get more actively involved in penetration testing, a field I'm really interested in and that could open several doors for me. To show my motivation I even studied for and earned a certification on my own, but despite repeatedly following up with the head of the pentest BU, I've never been involved in anything concrete.

My current position is fully on-site, 5 days a week, with the office 40 km from home (an 80 km round trip every day), and the pay is on the lower end.

The new offer

It's a position focused exclusively on Microsoft security, but in a consulting role: I'd manage a portfolio of clients, telling them what to do (via screen sharing), writing reports, and proposing new solutions. I wouldn't do anything directly technical or hands-on anymore or at least not like now, where I work directly on incidents and alerts with Defender but I'd only be supporting clients or their SOCs.

The new position offers noticeably higher pay and is hybrid on paper but essentially full remote, apart from the occasional trip to the Milan office.

My dilemma

On paper the new offer looks appealing, if only for the financial and logistical advantages. My fear, though is giving up a position that could eventually turn me into a more sought-after professional, in exchange for a role that might "lock me in": if one day I wanted to move into Penetration Testing, Threat Hunting or Incident Response, I'm afraid I'd be ruled out for lacking hands-on, cross-domain experience. I think I could still fall back on roles like Cloud Security Engineer, but I don't want to close any doors.

So, based on your experience: can a role like this be beneficial in the long run, or am I better off staying where I am and hoping something else comes along?

reddit.com
u/cyberLog4624 — 3 days ago

Update: Should I accept this new job offer

Hey there everyone, I'm writing as a follow-up to my post from a few days ago about a job offer I recently received. Yesterday I finished the technical interview and now have a clearer picture, so I'd like to ask for your advice.

My current situation

I'm 25 and I've been working for about a year at a relatively large company that also operates in cybersecurity.
I'm in a Microsoft BU, specialized in the security side of the stack (M365, Azure and AD), with the chance to occasionally work on other projects I'm interested in, such as incident response for AD and M365 environments.

A few months ago I asked to get more actively involved in penetration testing, a field I'm really interested in and that could open several doors for me. To show my motivation I even studied for and earned a certification on my own, but despite repeatedly following up with the head of the pentest BU, I've never been involved in anything concrete.

My current position is fully on-site, 5 days a week, with the office 40 km from home (an 80 km round trip every day), and the pay is on the lower end.

The new offer

It's a position focused exclusively on Microsoft security, but in a consulting role: I'd manage a portfolio of clients, telling them what to do (via screen sharing), writing reports, and proposing new solutions. I wouldn't do anything directly technical or hands-on anymore or at least not like now, where I work directly on incidents and alerts with Defender but I'd only be supporting clients or their SOCs.

The new position offers noticeably higher pay and is hybrid on paper but essentially full remote, apart from the occasional trip to the Milan office.

My dilemma

On paper the new offer looks appealing, if only for the financial and logistical advantages. My fear, though is giving up a position that could eventually turn me into a more sought-after professional, in exchange for a role that might "lock me in": if one day I wanted to move into Penetration Testing, Threat Hunting or Incident Response, I'm afraid I'd be ruled out for lacking hands-on, cross-domain experience. I think I could still fall back on roles like Cloud Security Engineer, but I don't want to close any doors.

So, based on your experience: can a role like this be beneficial in the long run, or am I better off staying where I am and hoping something else comes along?

reddit.com
u/cyberLog4624 — 3 days ago

Update: Should I accept this new job offer?

Hey there everyone, I'm writing as a follow-up to my post from a few days ago about a job offer I recently received. Yesterday I finished the technical interview and now have a clearer picture, so I'd like to ask for your advice.

My current situation

I'm 25 and I've been working for about a year at a relatively large company that also operates in cybersecurity.
I'm in a Microsoft BU, specialized in the security side of the stack (M365, Azure and AD), with the chance to occasionally work on other projects I'm interested in, such as incident response for AD and M365 environments.

A few months ago I asked to get more actively involved in penetration testing, a field I'm really interested in and that could open several doors for me. To show my motivation I even studied for and earned a certification on my own, but despite repeatedly following up with the head of the pentest BU, I've never been involved in anything concrete.

My current position is fully on-site, 5 days a week, with the office 40 km from home (an 80 km round trip every day), and the pay is on the lower end.

The new offer

It's a position focused exclusively on Microsoft security, but in a consulting role: I'd manage a portfolio of clients, telling them what to do (via screen sharing), writing reports, and proposing new solutions. I wouldn't do anything directly technical or hands-on anymore or at least not like now, where I work directly on incidents and alerts with Defender but I'd only be supporting clients or their SOCs.

The new position offers noticeably higher pay and is hybrid on paper but essentially full remote, apart from the occasional trip to the Milan office.

My dilemma

On paper the new offer looks appealing, if only for the financial and logistical advantages. My fear, though is giving up a position that could eventually turn me into a more sought-after professional, in exchange for a role that might "lock me in": if one day I wanted to move into Penetration Testing, Threat Hunting or Incident Response, I'm afraid I'd be ruled out for lacking hands-on, cross-domain experience. I think I could still fall back on roles like Cloud Security Engineer, but I don't want to close any doors.

So, based on your experience: can a role like this be beneficial in the long run, or am I better off staying where I am and hoping something else comes along?

reddit.com
u/cyberLog4624 — 3 days ago

Update: Should I accept this new job offer

Hey there everyone, I'm writing as a follow-up to my post from a few days ago about a job offer I recently received. Yesterday I finished the technical interview and now have a clearer picture, so I'd like to ask for your advice.

My current situation

I'm 25 and I've been working for about a year at a relatively large company that also operates in cybersecurity.
I'm in a Microsoft BU, specialized in the security side of the stack (M365, Azure and AD), with the chance to occasionally work on other projects I'm interested in, such as incident response for AD and M365 environments.

A few months ago I asked to get more actively involved in penetration testing, a field I'm really interested in and that could open several doors for me. To show my motivation I even studied for and earned a certification on my own, but despite repeatedly following up with the head of the pentest BU, I've never been involved in anything concrete.

My current position is fully on-site, 5 days a week, with the office 40 km from home (an 80 km round trip every day), and the pay is on the lower end.

The new offer

It's a position focused exclusively on Microsoft security, but in a consulting role: I'd manage a portfolio of clients, telling them what to do (via screen sharing), writing reports, and proposing new solutions. I wouldn't do anything directly technical or hands-on anymore or at least not like now, where I work directly on incidents and alerts with Defender but I'd only be supporting clients or their SOCs.

The new position offers noticeably higher pay and is hybrid on paper but essentially full remote, apart from the occasional trip to the Milan office.

My dilemma

On paper the new offer looks appealing, if only for the financial and logistical advantages. My fear, though is giving up a position that could eventually turn me into a more sought-after professional, in exchange for a role that might "lock me in": if one day I wanted to move into Penetration Testing, Threat Hunting or Incident Response, I'm afraid I'd be ruled out for lacking hands-on, cross-domain experience. I think I could still fall back on roles like Cloud Security Engineer, but I don't want to close any doors.

So, based on your experience: can a role like this be beneficial in the long run, or am I better off staying where I am and hoping something else comes along?

reddit.com
u/cyberLog4624 — 3 days ago

Aggiornamento: Pareri per nuova proposta lavorativa

Buongiorno a tutti, scrivo come seguito al mio post di qualche giorno fa su una proposta di lavoro che ho ricevuto di recente.
Ieri ho concluso il colloquio tecnico e ora ho un quadro più chiaro, quindi vi chiedo un consiglio.

La mia situazione attuale

Ho 25 anni e da circa un anno lavoro in un'azienda relativamente grande che opera anche nella sicurezza informatica.
Sono in una BU Microsoft, verticalizzato sulla parte security dello stack (M365, Azure e AD) con la possibilità di lavorare sporadicamente su altri progetti che mi interessano, come l'incident response per ambienti AD e M365.

Mesi fa ho chiesto di partecipare più attivamente alle attività di penetration test, un ambito che mi interessa molto e che potrebbe aprirmi diverse porte.
Per dimostrare la mia motivazione ho anche studiato e ottenuto una certificazione per conto mio, ma nonostante i solleciti al responsabile della BU pentest non sono mai stato coinvolto in nulla di concreto.

Con la posizione attuale ho 22k di RAL, buoni pasto da 8€, 5 giorni su 5 in presenza con ufficio a 40 km da casa (80 km al giorno tra andata e ritorno).

La nuova proposta

Si tratta di una posizione esclusivamente verticale sulla sicurezza Microsoft, ma in un ruolo consulenziale dato che gestirei un portfolio di clienti a cui spiegare cosa fare (in condivisione schermo), redigere report e proporre nuove soluzioni. Non farei più nulla di direttamente tecnico e operativo almeno non come prima dove andavo direttamente a incident o alert con Defender, ma darei solo supporto ai clienti o ai loro SOC.

Con la nuova proposta avrei circa 30k di RAL, buoni pasto da 7€, contratto ibrido ma di fatto full remote salvo qualche trasferta sporadica nella sede di Milano.

Il mio dubbio

Sulla carta la nuova proposta sembra conveniente anche solo per il vantaggio economico e logistico.
Il mio timore però è di abbandonare una posizione che in futuro potrebbe farmi diventare una figura più ricercata per un ruolo che rischia di "bloccarmi" dato che se un domani volessi fare Penetration Test, Threat Hunting o Incident Response temo di essere escluso per mancanza di esperienza pratica e trasversale su più ambiti.
Credo che potrei comunque ripiegare su ruoli come Security Engineer per ambienti cloud, ma non vorrei escludermi nulla.

Chiedo quindi per quella che è la vostra esperienza, un ruolo del genere può essere vantaggioso nel lungo termine o mi conviene restare dove sono e sperare di trovare altro in futuro?

reddit.com
u/cyberLog4624 — 3 days ago

Aggiornamento: Pareri per nuova proposta lavorativa

Buongiorno a tutti, scrivo come seguito al mio post di qualche giorno fa su una proposta di lavoro che ho ricevuto di recente.
Ieri ho concluso il colloquio tecnico e ora ho un quadro più chiaro, quindi vi chiedo un consiglio.

La mia situazione attuale

Ho 25 anni e da circa un anno lavoro in un'azienda relativamente grande che opera anche nella sicurezza informatica.
Sono in una BU Microsoft, verticalizzato sulla parte security dello stack (M365, Azure e AD) con la possibilità di lavorare sporadicamente su altri progetti che mi interessano, come l'incident response per ambienti AD e M365.

Mesi fa ho chiesto di partecipare più attivamente alle attività di penetration test, un ambito che mi interessa molto e che potrebbe aprirmi diverse porte.
Per dimostrare la mia motivazione ho anche studiato e ottenuto una certificazione per conto mio, ma nonostante i solleciti al responsabile della BU pentest non sono mai stato coinvolto in nulla di concreto.

Con la posizione attuale ho 22k di RAL, buoni pasto da 8€, 5 giorni su 5 in presenza con ufficio a 40 km da casa (80 km al giorno tra andata e ritorno).

La nuova proposta

Si tratta di una posizione esclusivamente verticale sulla sicurezza Microsoft, ma in un ruolo consulenziale dato che gestirei un portfolio di clienti a cui spiegare cosa fare (in condivisione schermo), redigere report e proporre nuove soluzioni. Non farei più nulla di direttamente tecnico e operativo almeno non come prima dove andavo direttamente a incident o alert con Defender, ma darei solo supporto ai clienti o ai loro SOC.

Con la nuova proposta avrei circa 30k di RAL, buoni pasto da 7€, contratto ibrido ma di fatto full remote salvo qualche trasferta sporadica nella sede di Milano.

Il mio dubbio

Sulla carta la nuova proposta sembra conveniente anche solo per il vantaggio economico e logistico.
Il mio timore però è di abbandonare una posizione che in futuro potrebbe farmi diventare una figura più ricercata per un ruolo che rischia di "bloccarmi" dato che se un domani volessi fare Penetration Test, Threat Hunting o Incident Response temo di essere escluso per mancanza di esperienza pratica e trasversale su più ambiti.
Credo che potrei comunque ripiegare su ruoli come Security Engineer per ambienti cloud, ma non vorrei escludermi nulla.

Chiedo quindi per quella che è la vostra esperienza, un ruolo del genere può essere vantaggioso nel lungo termine o mi conviene restare dove sono e sperare di trovare altro in futuro?

reddit.com
u/cyberLog4624 — 3 days ago

Should I accept this new job?

Hey there everyone.

I'm writing to ask for your advice regarding an opportunity that recently came my way. I'll start with a brief background on my skills and my work situation: I'm 25 years old, and after studying in the field of cybersecurity, I was hired by a company to join the Microsoft BU (Microsoft Security, more specifically).

I'll start by saying that I certainly didn't aspire to work with just one technology stack, and even less so to work with Microsoft products, but unfortunately I had no other choice since I needed a job.

I was hired at a relatively junior level, so I'm on the lower end of the pay scale, plus meal vouchers, and the work is fully on-site (around a 50-mile round trip). As you've probably gathered, the conditions aren't the best. The only upside, though, is my position within the company.

In just a few months I've become a trusted figure on the team and to the CISO, and since it's a particularly large company, I have the chance to work (occasionally) in other areas of security (such as Penetration Testing). This could open doors to a lot more in the future.

Recently, however, thanks to a referral from a friend, I was contacted by a company that deals exclusively with Microsoft Security and would be interested in me. So far I've only had an introductory interview with HR, but I've already been offered higher pay and a step up in seniority, along with a hybrid setup that would let me work remotely most of the time, with trips to the main offices 2-3 times a month.

On paper it's a great opportunity, but the only thing that makes me a bit uncertain is how specialized the role is, since I don't know whether specializing only in the Microsoft space (M365 & Azure) might prevent me from doing other things in the future in more sought-after and better-paid areas (e.g. penetration testing).

I'd appreciate your opinion on this if possible, maybe from people who've been in similar situations or perhaps people in the field who can give me some pointers.

Thanks in advance.

reddit.com
u/cyberLog4624 — 6 days ago

Should I accept this new job?

Hey there everyone.

I'm writing to ask for your advice regarding an opportunity that recently came my way. I'll start with a brief background on my skills and my work situation: I'm 25 years old, and after studying in the field of cybersecurity, I was hired by a company to join the Microsoft BU (Microsoft Security, more specifically).

I'll start by saying that I certainly didn't aspire to work with just one technology stack, and even less so to work with Microsoft products, but unfortunately I had no other choice since I needed a job.

I was hired at a relatively junior level, so I'm on the lower end of the pay scale, plus meal vouchers, and the work is fully on-site (around a 50-mile round trip). As you've probably gathered, the conditions aren't the best. The only upside, though, is my position within the company.

In just a few months I've become a trusted figure on the team and to the CISO, and since it's a particularly large company, I have the chance to work (occasionally) in other areas of security (such as Penetration Testing). This could open doors to a lot more in the future.

Recently, however, thanks to a referral from a friend, I was contacted by a company that deals exclusively with Microsoft Security and would be interested in me. So far I've only had an introductory interview with HR, but I've already been offered higher pay and a step up in seniority, along with a hybrid setup that would let me work remotely most of the time, with trips to the main offices 2-3 times a month.

On paper it's a great opportunity, but the only thing that makes me a bit uncertain is how specialized the role is, since I don't know whether specializing only in the Microsoft space (M365 & Azure) might prevent me from doing other things in the future in more sought-after and better-paid areas (e.g. penetration testing).

I'd appreciate your opinion on this if possible, maybe from people who've been in similar situations or perhaps people in the field who can give me some pointers.

Thanks in advance.

reddit.com
u/cyberLog4624 — 6 days ago

Should I accept this new job?

Hey there everyone.

I'm writing to ask for your advice regarding an opportunity that recently came my way. I'll start with a brief background on my skills and my work situation: I'm 25 years old, and after studying in the field of cybersecurity, I was hired by a company to join the Microsoft BU (Microsoft Security, more specifically).

I'll start by saying that I certainly didn't aspire to work with just one technology stack, and even less so to work with Microsoft products, but unfortunately I had no other choice since I needed a job.

I was hired at a relatively junior level, so I'm on the lower end of the pay scale, plus meal vouchers, and the work is fully on-site (around a 50-mile round trip). As you've probably gathered, the conditions aren't the best. The only upside, though, is my position within the company.

In just a few months I've become a trusted figure on the team and to the CISO, and since it's a particularly large company, I have the chance to work (occasionally) in other areas of security (such as Penetration Testing). This could open doors to a lot more in the future.

Recently, however, thanks to a referral from a friend, I was contacted by a company that deals exclusively with Microsoft Security and would be interested in me. So far I've only had an introductory interview with HR, but I've already been offered higher pay and a step up in seniority, along with a hybrid setup that would let me work remotely most of the time, with trips to the main offices 2-3 times a month.

On paper it's a great opportunity, but the only thing that makes me a bit uncertain is how specialized the role is, since I don't know whether specializing only in the Microsoft space (M365 & Azure) might prevent me from doing other things in the future in more sought-after and better-paid areas (e.g. penetration testing).

I'd appreciate your opinion on this if possible, maybe from people who've been in similar situations or perhaps people in the field who can give me some pointers.

Thanks in advance.

reddit.com
u/cyberLog4624 — 6 days ago

Should I accept this new job offer

Hey there everyone.

I'm writing to ask for your advice regarding an opportunity that recently came my way. I'll start with a brief background on my skills and my work situation: I'm 25 years old, and after studying in the field of cybersecurity, I was hired by a company to join the Microsoft BU (Microsoft Security, more specifically).

I'll start by saying that I certainly didn't aspire to work with just one technology stack, and even less so to work with Microsoft products, but unfortunately I had no other choice since I needed a job.

I was hired at a relatively junior level, so I'm on the lower end of the pay scale, plus meal vouchers, and the work is fully on-site (around a 50-mile round trip). As you've probably gathered, the conditions aren't the best. The only upside, though, is my position within the company.

In just a few months I've become a trusted figure on the team and to the CISO, and since it's a particularly large company, I have the chance to work (occasionally) in other areas of security (such as Penetration Testing). This could open doors to a lot more in the future.

Recently, however, thanks to a referral from a friend, I was contacted by a company that deals exclusively with Microsoft Security and would be interested in me. So far I've only had an introductory interview with HR, but I've already been offered higher pay and a step up in seniority, along with a hybrid setup that would let me work remotely most of the time, with trips to the main offices 2-3 times a month.

On paper it's a great opportunity, but the only thing that makes me a bit uncertain is how specialized the role is, since I don't know whether specializing only in the Microsoft space (M365 & Azure) might prevent me from doing other things in the future in more sought-after and better-paid areas (e.g. penetration testing).

I'd appreciate your opinion on this if possible, maybe from people who've been in similar situations or perhaps people in the field who can give me some pointers.

Thanks in advance.

reddit.com
u/cyberLog4624 — 6 days ago

Pareri per nuova proposta lavorativa

Buongiorno a tutti.

Scrivo per chiedervi consiglio relativo ad un'opportunità che si è presentata dinanzi a me di recente.
Parto con un breve background delle mie competenze e della mia situazione lavorativa: ho 25 anni e dopo un percorso di studi nel campo della sicurezza informatica, sono stato assunto presso un'azienda per entrare a fare parte della BU Microsoft (Microsoft Security più nello specifico).

Parto con il dire che non ambivo di certo a lavorare solo con uno stack tecnologico e ancora meno a lavorare con prodotti Microsoft ma ahimè non avevo altra scelta in quanto necessitavo di un lavoro.

Sono stato assunto al 6° livello del CCNL commercio, quindi prendo circa 22k di RAL + buoni pasto e il lavoro si svolge in sede (circa 80k tra andata e ritorno).
Come avrete intuito quindi le condizioni non sono delle migliori. L'unico lato positivo però è la mia posizione lavorativa in azienda.

In pochi mesi sono diventato una figura affidabile del team e del CISO e dato che si tratta di un'azienda particolarmente grande, ho la possibilità di lavorare (sporadicamente) in altri ambiti della sicurezza (come Penetration Testing).
Questo mi potrebbe aprire le porte a molto altro nel futuro.

Recentemente però, grazie al passaparola di un amico, sono stato contattato da un'azienda che si occupa esclusivamente di Sicurezza Microsoft e che sarebbe interessata alla mia figura professionale.
Per ora ho fatto solo un colloquio conoscitivo con l'HR ma mi è già stato proposto un livello in più del CCNL e una posizione ibrida che mi permette di lavorare da remoto la maggior parte del tempo con trasferte presso le sedi principali (roma o milano) 2-3 volte al mese.

Sulla carta è un'ottima opportunità ma l'unica cosa che mi rende un po' incerto è la verticalità delle mansioni in quanto non so se specializzarmi solo in ambito Microsoft (M365&Azure) potrebbe impedirmi di fare altro in futuro in ambiti più ricercati e pagati meglio (e.s penetration testing).

Vorrei il vostro parere in merito se possibile, magari da persone che hanno avuto situazioni simili o da magari persone del settore che possono darmi una dritta.

Grazie in anticipo

reddit.com
u/cyberLog4624 — 6 days ago

Pareri per nuova proposta lavorativa

Buongiorno a tutti.

Scrivo per chiedervi consiglio relativo ad un'opportunità che si è presentata dinanzi a me di recente.
Parto con un breve background delle mie competenze e della mia situazione lavorativa: ho 25 anni e dopo un percorso di studi nel campo della sicurezza informatica, sono stato assunto presso un'azienda per entrare a fare parte della BU Microsoft (Microsoft Security più nello specifico).

Parto con il dire che non ambivo di certo a lavorare solo con uno stack tecnologico e ancora meno a lavorare con prodotti Microsoft ma ahimè non avevo altra scelta in quanto necessitavo di un lavoro.

Sono stato assunto al 6° livello del CCNL commercio, quindi prendo circa 22k di RAL + buoni pasto e il lavoro si svolge in sede (circa 80k tra andata e ritorno).
Come avrete intuito quindi le condizioni non sono delle migliori. L'unico lato positivo però è la mia posizione lavorativa in azienda.

In pochi mesi sono diventato una figura affidabile del team e del CISO e dato che si tratta di un'azienda particolarmente grande, ho la possibilità di lavorare (sporadicamente) in altri ambiti della sicurezza (come Penetration Testing).
Questo mi potrebbe aprire le porte a molto altro nel futuro.

Recentemente però, grazie al passaparola di un amico, sono stato contattato da un'azienda che si occupa esclusivamente di Sicurezza Microsoft e che sarebbe interessata alla mia figura professionale.
Per ora ho fatto solo un colloquio conoscitivo con l'HR ma mi è già stato proposto un livello in più del CCNL e una posizione ibrida che mi permette di lavorare da remoto la maggior parte del tempo con trasferte presso le sedi principali (roma o milano) 2-3 volte al mese.

Sulla carta è un'ottima opportunità ma l'unica cosa che mi rende un po' incerto è la verticalità delle mansioni in quanto non so se specializzarmi solo in ambito Microsoft (M365&Azure) potrebbe impedirmi di fare altro in futuro in ambiti più ricercati e pagati meglio (e.s penetration testing).

Vorrei il vostro parere in merito se possibile, magari da persone che hanno avuto situazioni simili o da magari persone del settore che possono darmi una dritta.

Grazie in anticipo

reddit.com
u/cyberLog4624 — 6 days ago
▲ 3 r/Italia

Romanticizzare il fascimo

Recentemente ho notato un trend molto spaventoso online: la romanticizzazione del fascismo come soluzione a tutti i problemi italiani ovvero l'immigrazione, che a detta di alcuni è la causa di tutti i problemi in italia.
Sotto molte sezioni commenti su social come instagram e tiktok, soprattutto sotto post relativi a stranieri o immigrati, ci sono molte persone che osannano il fascismo (o l'estrema destra in generale) come unica soluzione a questo particolare problema condannando la sinistra come i "cattivi".

Parto con il dire che la mia opinione in merito è abbastanza "banale": sono contro all'immigrazione incontrollata che affligge l'europa oggi e alla mancanza di ripercussioni per i soggetti che infrangono la legge, non sono però contro al concetto di immigrazione in se.

E' un qualcosa di innato nell'essere umano, l'abbiamo fatto per millenni e continueremo a farlo fino alla nostra estinzione.
Quindi non è tanto il concetto ma l'esecuzione ad essere sbagliata.

Questo per dire che pur essendo più tendende alla "sinistra", non mi sembra sufficiente rinchiudermi sotto una classificazione del genere soprattutto quando si parla di tematiche così complesse (soprattutto con una sinstra che oggi non penso mi rappresenti).

Trovo quindi molto spaventoso questa narrativa che ho visto circolare online dove estrema destra = buoni mentre sinistra=cattivi.
L'idea che scendere per strada e picchiare sia immigrati (non importa se danno fastidio o meno) che persone che non la pensano come te, è un qualcosa che trovo disgustoso.

Anche alcuni miei conoscenti e colleghi di lavoro, parlandoci, hanno iniziato a pensarla così e a condividire queste idee estreme e ad osannare il fascismo con parole che a loro detta sono "solo battute" ma sembrano un po' troppo sincere.

Anche voi avete avuto questa impressione ultimamente?

reddit.com
u/cyberLog4624 — 12 days ago

Defender for Servers"enable P1 with tag" policy reports 100% compliant but machines stay on inherited P2. What am I missing?

Hoping someone who knows the Defender for Cloud granular-pricing internals can sanity-check me, because I've been going insane.
I have 50 Azure Arc-enabled servers in one subscription. I want the critical ones on P2 and the rest on P1 to cut cost so I did this:

  • P2 enabled at the subscription as the baseline.
  • Tag each machine Defender = P1 or Defender = P2 (pushed during Arc onboarding).
  • Assign the built-in policy "Configure Azure Defender for Servers to be enabled (with 'P1' subplan) for all resources (resource level) with the selected tag", targeting the P1 tag, so the non-critical boxes get pulled down to P1.

I tried it out on a pilot group of 10 servers for now and it looked like it worked but it didn't since:

  • Policy compliance: 100% compliant, 10/10. Green check.

https://preview.redd.it/m61kt04xrp8h1.png?width=546&format=png&auto=webp&s=aee64430637f746abb40b5bfa1cc7f159eadfe3e

  • Remediation: two tasks, both Complete, both "0 out of 0" remediated.

https://preview.redd.it/dhb96d0yrp8h1.png?width=1417&format=png&auto=webp&s=859c3ff043c6b118b3f824caa18d08882e2fbc8e

So no machine is actually on P1.

Stuff I've already ruled out

  • The policy's managed identity has Security Admin on the subscription (verified in the assignment's Managed Identity tab), so it's not a permissions thing I chased that for a while.
  • Tag parameters on the assignment are correct (inclusionTagName = Defender, value P1), and the tags really are on the resources.
  • Compliance was freshly evaluated (today's timestamps), so it's not stale data.

I gave up on the policy for now and just wrote the subplan explicitly on each resource via the pricing API. I wrote in Microsoft.Security/pricingst through Cloud Shell as it grabs Arc machines tagged Defender=P1, PUTs Standard/P1, then reads back to confirm.

This flips everything to SubPlan = P1 / Source = Explicit and billing drops to P1. So the API path works fine but it's a one-shot I have to look out for, and it does nothing for machines onboarded later, which is the whole reason I wanted a policy in the first place.

So my actual question:
Why does the policy report compliant + "0 out of 0" and never write P1? (I'm going to attach the parameters of the policy)

https://preview.redd.it/9d1g852wrp8h1.png?width=1548&format=png&auto=webp&s=183ffd76ce6ad90d9d29c6e45ad44a2ffeb19e81

Is there any working way to actually do this? Has anyone done this for their own environment?

Thanks

reddit.com
u/cyberLog4624 — 15 days ago

Defender for Servers"enable P1 with tag" policy reports 100% compliant but machines stay on inherited P2. What am I missing?

Hoping someone who knows the Defender for Cloud granular-pricing internals can sanity-check me, because I've been going insane.
I have 50 Azure Arc-enabled servers in one subscription. I want the critical ones on P2 and the rest on P1 to cut cost so I did this:

  • P2 enabled at the subscription as the baseline.
  • Tag each machine Defender = P1 or Defender = P2 (pushed during Arc onboarding).
  • Assign the built-in policy "Configure Azure Defender for Servers to be enabled (with 'P1' subplan) for all resources (resource level) with the selected tag", targeting the P1 tag, so the non-critical boxes get pulled down to P1.

I tried it out on a pilot group of 10 servers for now and it looked like it worked but it didn't since:

  • Policy compliance: 100% compliant, 10/10. Green check.

https://preview.redd.it/5sfr4v3lrp8h1.png?width=546&format=png&auto=webp&s=03c8eef53e15b049b0ba7b217babf9f23872376b

  • Remediation: two tasks, both Complete, both "0 out of 0" remediated.

https://preview.redd.it/k0tetucmrp8h1.png?width=1417&format=png&auto=webp&s=bf556ff8679a98ab919b9da765815d4a2180002a

So no machine is actually on P1.

Stuff I've already ruled out

  • The policy's managed identity has Security Admin on the subscription (verified in the assignment's Managed Identity tab), so it's not a permissions thing I chased that for a while.
  • Tag parameters on the assignment are correct (inclusionTagName = Defender, value P1), and the tags really are on the resources.
  • Compliance was freshly evaluated (today's timestamps), so it's not stale data.

I gave up on the policy for now and just wrote the subplan explicitly on each resource via the pricing API. I wrote in Microsoft.Security/pricingst through Cloud Shell as it grabs Arc machines tagged Defender=P1, PUTs Standard/P1, then reads back to confirm.

This flips everything to SubPlan = P1 / Source = Explicit and billing drops to P1. So the API path works fine but it's a one-shot I have to look out for, and it does nothing for machines onboarded later, which is the whole reason I wanted a policy in the first place.

So my actual question:
Why does the policy report compliant + "0 out of 0" and never write P1? (I'm going to attach the parameters of the policy)

https://preview.redd.it/amc9mgonrp8h1.png?width=1548&format=png&auto=webp&s=ce8e99cdd918c43e213a9bae49b670c7e645ab3c

Is there any working way to actually do this? Has anyone done this for their own environment?

Thanks

reddit.com
u/cyberLog4624 — 15 days ago
▲ 6 r/AZURE

Defender for Servers"enable P1 with tag" policy reports 100% compliant but machines stay on inherited P2. What am I missing?

Hoping someone who knows the Defender for Cloud granular-pricing internals can sanity-check me, because I've been going insane.
I have 50 Azure Arc-enabled servers in one subscription. I want the critical ones on P2 and the rest on P1 to cut cost so I did this:

  • P2 enabled at the subscription as the baseline.
  • Tag each machine Defender = P1 or Defender = P2 (pushed during Arc onboarding).
  • Assign the built-in policy "Configure Azure Defender for Servers to be enabled (with 'P1' subplan) for all resources (resource level) with the selected tag", targeting the P1 tag, so the non-critical boxes get pulled down to P1.

I tried it out on a pilot group of 10 servers for now and it looked like it worked but it didn't since:

  • Policy compliance: 100% compliant, 10/10. Green check.

https://preview.redd.it/98k4b044rp8h1.png?width=546&format=png&auto=webp&s=37a52650909928f25588f23c458fda2dd13534ce

  • Remediation: two tasks, both Complete, both "0 out of 0" remediated.

https://preview.redd.it/z8lkhlebrp8h1.png?width=1417&format=png&auto=webp&s=8a4d6752a2a63c7b703e8086aea281c8d09074fe

So no machine is actually on P1.

Stuff I've already ruled out

  • The policy's managed identity has Security Admin on the subscription (verified in the assignment's Managed Identity tab), so it's not a permissions thing I chased that for a while.
  • Tag parameters on the assignment are correct (inclusionTagName = Defender, value P1), and the tags really are on the resources.
  • Compliance was freshly evaluated (today's timestamps), so it's not stale data.

I gave up on the policy for now and just wrote the subplan explicitly on each resource via the pricing API. I wrote in Microsoft.Security/pricingst through Cloud Shell as it grabs Arc machines tagged Defender=P1, PUTs Standard/P1, then reads back to confirm.

This flips everything to SubPlan = P1 / Source = Explicit and billing drops to P1. So the API path works fine but it's a one-shot I have to look out for, and it does nothing for machines onboarded later, which is the whole reason I wanted a policy in the first place.

So my actual question:
Why does the policy report compliant + "0 out of 0" and never write P1? (I'm going to attach the parameters of the policy)

https://preview.redd.it/gxczriinpp8h1.png?width=1548&format=png&auto=webp&s=baeb8e08a1705cf224a2de66ffd365c3ec7f139a

Is there any working way to actually do this? Has anyone done this for their own environment?

Thanks

reddit.com
u/cyberLog4624 — 15 days ago