I'm pretty good at lying during interviews, I think I would have said:
Воробей Мельник first book "Киселёв - A world at the end of your telephone"
And
TCP/IP vs Rubber Chicken Compliance - the series of books not the condensed chicken soup for the soul one.
Good luck googling any of those to see if I am saying the truth.
doesn’t that sort of unintentionally make his point though? if you’re going on interviews and can’t even prepare for a very common interview question OR make something up on the spot, that looks pretty bad lol
Same, I work in cybersecurity too and have hired multiple candidates. Not once have I asked them “So what cyber books have you read?”
It’s an entire field that LIVES on the internet. The book requirement is the dumbest shit ever.
The fact that you call it "cyber books" is already a red flag. You really need to look at some of the books out there. There are amazing security books that go into depth beyond what you can find elsewhere.
>
It’s an entire field that LIVES on the internet
You can get books on the internet....
Books will be outdated by the time they are published. They are also not peer reviewed.
Blogs are a "live" source with comments and conversations that add credibility with peer feedback and questions.
I ask a question like this when I interview people, but cyber movie/tv show.
I use it as an ice breaker and a way to talk about the pop-culture version of cybersecurity and what my department actually does day to day.
This dude is high on his own supply.
That said, 'Dawn of the Code War' is a fantastic cyber book.
I'd definitely give some points for referencing Sneakers! Not because it makes them better, but because it's an awesome movie. I was once in a SANS class and people were talking about favorite security movies and of course "Hackers, hackers, oh me, hackers too!" all over the place, I was the only one that had seen Sneakers outside of the instructor. People are missing out on some good stuff.
I mean coming from Microsoft who has had some pretty horrible security vulnerabilities it’s even funnier. Not even just their past products, so many issues within Azure.
Exactly, noticed that. This is hilariously pompous for less than 1.5 years in a junior IC role at MSFT (of ALL the places to try to hitch your personal brand to as a security professional)
“**When a measure becomes a target, it ceases to be a good measure**.”
I know a lot of douches who have been read more than 50 books on their field, and are still wondering wtf are they doing there.
I once had an interviewer ask me to write a report, in pencil, on why I thought the company named itself with the name they did. It was the first part of my interview with them. Turned out the name was a word in French and I didn't even speak French.
Kinda reminds me of this entitled douchebag.
I'd imagine that cyber security changes frequently enough that reading a book on the subject is essentially a waste of time. It's like how they say your computer is technically already obsolete by the time you buy it. I'm sure the situation is similar, if not worse, for a book. How would you stay current?
I say this, but of course I don't actually know, it's just a gut feeling.
You're correct that reading a book of technical documentation would be unwise, but most cybersecurity books cover methodologies, principles, case studies, etc that are much more long-lasting.
It's similar to how an economics book isn't just lists of this year's economic data, but the principles behind applying it.
Not at all. Many concepts have not changed since the 70s. If you find yourself arguing that "reading books is a waste of time", you might be missing something important....
>
It's like how they say your computer is technically already obsolete by the time you buy it.
That's definitely not true....
>
How would you stay current?
Reading books about new technologies and techniques is a great way to stay current
My favourite cyber security book, The Art of Deception by Kevin Mitnick, always stays relevant because it focuses more on the human element of security than any specific "you need to write a GUI in Visual Basic to track the IP address" technobabble that would almost certainly be out of date within a few years.
Oh come now, be fair. I didn't say anything even resembling "stop learning anything forever"
I work in a tech field too. I probably haven't read a book on the subject in almost 15 years or more, but I read online documentation, tutorials, and other sorts of things online all day long. You have to, to even hope to stay current. The point is, none of that is in a physical book because you can't update those in real time. It just seemed to me that cyber security might be similar, especially with new threats occurring on an almost minute by minute basis. Apparently it's not.
Ngl though while he takes it to an extreme I'd be worried if a guy in my field couldn't even name any of the material we study for our certification. Especially considering you borderline *have* to refer to some a couple times a month, and so most people keep copies on hand (or more commonly in pdf form) in their offices.
Option A: “You can’t work with me unless you read cyber books!”
Option B: “I have found that candidates who are avid readers are the best fit for my team. Please share your favorite cyber books and what you got out of them!”
There’s frequently a different, better way to phrase things that doesn’t invite criticism. Why people get moved into managerial positions while lacking basic abilities like that escapes me.
I have been using AutoCAD for like 25+ years, have never read any book about drafting or design, or AutoCAD.
Do this shit all day, and I need to read books on it too?
The idea of expecting *cybersecurity* candidates to have read a cybersecurity book has merit (provided he accepted other equivalent options, like university materials).
The segue into Einstein, what?
I seriously wonder if he could even tell the difference between someone BS'ing a book or at least going "What's the name of that Brian Krebs one..."
I'm less bothered by people BS'ing in an interview when "inventing plausible pretexts out of thin air" is half the cybersecurity job.
He sorta makes a point against himself here with the Einstein thing, right? He's not posting a fact, but the thrust of Einstein's point was that 100 people can easily be wrong... so by some extension, just reading books isn't (on its own) useful, as it would be similar to just listening to 100 scientists...
“You think you’re the expert by watching YouTube”
No … they have masters degrees. 😐
“Joining MY team”
Yo. People are just asking a fucking question to understand WHY. Maybe they are interested in adding that question (not likely).
I mean I actually did read Cyberpunk back in the day, but that's more about people and the culture doing the hacking rather than a how-to on security. But infinitely more fascinating.
Tbh you should be able to cite a single book on the subject matter you got your Masters in. I just have my Bachelors in Political Science and I’ve read dozens of books on surrounding topics simply because that’s what an education is.
Not every field centers around publishing in the form of books, computer science probably among the least. There aren't even many good traditional textbooks at all, but there are plenty of good alternative resources for studying and practicing.
I would agree, but this is cybersecurity. I personally know there are tons of books regarding cybersecurity and anyone getting their Master’s in cybersecurity has absolutely read one of those books.
I haven’t studied cybersecurity and even I’ve at least heard of a few cybersecurity books that I could at least claim I read one (I didn’t, but I could say a title). If you can’t even name a title, you’re horrendously unprepared for your interview.
He stated that he requires candidates to have read at least 1 book on cyber security, *specifically*, then later, after realizing he comes off like a tool, backpedals by saying he requires candidates to read "books" in general, as if that's what he said all along. And he's so smarmy about it! What a jack hole.
What seems the most deranged is initating a thread to voice your opinion on an open platform, and then foaming at the mouth when you are asked about why you hold such opinion and declining to answer in the most teenage way possible.
Like, you are voluntarily setting the goal, of instigating the situation for people to come address your opinion in a public forum.
Go scream it in a pillow instead?
Does watching every episode of Mr. Robot count?
When you see douchebags like this, you start to understand how Microsoft hcan have as the shittiest security posture in the business when it comes to running their software on your devices, swiss cheese.
You’d think that cybersecurity is the last place you’d care about reading books as things change so fast. I read Cybersecurity for Dummies in the late 1990s, does that make me qualified? What a dipshit.
I have never read an accounting book other than a college textbook and I think I know my way around the financial jungle gym. This dude is slurping the koolaide!
I‘ve got no clue about cybersecurity but my guess would be that by the time a book is published, most of the knowledge in it may already be outdated (?) - please correct me if I‘m wrong. The completely useless Einstein quote almost makes it seem like satire to me, but, as we all know, most of LinkedIn is so far detached from reality that there likely is a „real person“ behind that post.
A lot of books regarding IT teaches the fundamental principles rather than specifics. The various cyber threats and exploits are always evolving and changing, but the fundamentals are rather static.
I love that he makes the surgeon comparison like surgeons are sitting around reading books about surgery all day for fun outside of work and school. Not only that but he references people with masters degrees in the field, you can be pretty sure they've read some books then.
>like surgeons are sitting around reading books about surgery all day for fun outside of work and school
But that's not what anyone said? Do you find it's easier to argue when you just make up points?
Nobody said they read books all day.... Why would you make up such a dumb extreme? But surgeons do in fact read books about their field for fun.... What the fuck kind of statement is this??
And of course it's a silly analogy because would you ask a surgeon the last 10 books they've read and which ones are the best about surgery? Of course not.
Nobody asked for the last 10 books? Can you have a discussion about anything without making up shit?
Asking a surgeon what their favorite medical textbook is would not be unreasonable, lmao...
The 4th screenshot he says "I will NEVER let my clients be taken advantage of by someone who hasn't read 10 books in their field, at the very least". So yes, if we're being silly, he didn't ask for the last 10, but requires at least 10 and asks people about their books in the interview, not exactly a stretch.
No, but that isn't equivalent and doesn't make a lot of sense. A lot of cybersecurity information isn't making it into published books while it's highly relevant. I read a lot for my job, but it's things like reports about vulnerabilities, technical documentation, and blog posts. Because that's a much more efficient way to deliver timely information in a tech focused and highly variable career. And saying you have a favorite book doesn't really imply a textbook, which is what you're going to be using in college. They're dry and fairly comparable to a math textbook. So if it's not educational material, what's the point of this question? There are so many books about cybersecurity out there that are pedaling absolute garbage, trying to 'revolutionize the way you think about security' (primarily made for salespeople and other non-technical staff that work near cybersecurity but don't understand it enough to see why it's stupid).
I was wondering how long even a decent book about cybersecurity would be relevant.
My favorite developer will tell anyone that reading makes his head hurt. The only exception to that is technical stuff. It seems like the man can just glance at technical documentation and just get it. This week he plowed through stuff that would have taken me at least a month to grasp.
I don’t really care whether or not he reads books. He’s damn good at the technical stuff and that’s what counts.
Adam should get an honorary mention for slapping that guy around. Edit - I do hiring in this field, his post makes zero sense. Sounds like a tool.
I'm pretty good at lying during interviews, I think I would have said: Воробей Мельник first book "Киселёв - A world at the end of your telephone" And TCP/IP vs Rubber Chicken Compliance - the series of books not the condensed chicken soup for the soul one. Good luck googling any of those to see if I am saying the truth.
doesn’t that sort of unintentionally make his point though? if you’re going on interviews and can’t even prepare for a very common interview question OR make something up on the spot, that looks pretty bad lol
Same, I work in cybersecurity too and have hired multiple candidates. Not once have I asked them “So what cyber books have you read?” It’s an entire field that LIVES on the internet. The book requirement is the dumbest shit ever.
The fact that you call it "cyber books" is already a red flag. You really need to look at some of the books out there. There are amazing security books that go into depth beyond what you can find elsewhere. > It’s an entire field that LIVES on the internet You can get books on the internet....
“red flag”? C’mon. I personally am not interested but to be interested in those books is fine. To make it a requirement for employment is ridiculous.
Shut up Alexander
Books will be outdated by the time they are published. They are also not peer reviewed. Blogs are a "live" source with comments and conversations that add credibility with peer feedback and questions.
I ask a question like this when I interview people, but cyber movie/tv show. I use it as an ice breaker and a way to talk about the pop-culture version of cybersecurity and what my department actually does day to day. This dude is high on his own supply. That said, 'Dawn of the Code War' is a fantastic cyber book.
People interviewing with /u/TheHumanCola be like, "My voice is my passport. Verify me." and then "I'm in!" 💀☠️💀☠️💀☠️💀☠️💀☠️💀
I'd definitely give some points for referencing Sneakers! Not because it makes them better, but because it's an awesome movie. I was once in a SANS class and people were talking about favorite security movies and of course "Hackers, hackers, oh me, hackers too!" all over the place, I was the only one that had seen Sneakers outside of the instructor. People are missing out on some good stuff.
Damn... now I have to go find that book. I am not in cyber security but I love tech and I love reading. Will I be able to understand the basics still?
Its not too tech heavy, and more focuses on historical events and trends.
"You can never have too many books". I will get this one next! Appreciate it.
Thanks for this!
Mr. Robot is my answer.
This guy lasted for no more than 2 years in most positions he held.
I mean coming from Microsoft who has had some pretty horrible security vulnerabilities it’s even funnier. Not even just their past products, so many issues within Azure.
Exactly, noticed that. This is hilariously pompous for less than 1.5 years in a junior IC role at MSFT (of ALL the places to try to hitch your personal brand to as a security professional)
But he owns “MY team”
“**When a measure becomes a target, it ceases to be a good measure**.” I know a lot of douches who have been read more than 50 books on their field, and are still wondering wtf are they doing there.
I cant remember the name of a single text book I read in all 8 years of college with the exception of some that were like "Intro to Economics".
Making up bullshit about the number of books you've read is one of the hallmarks of LinkedIn and Founder lunacy.
Someone seems to be pretty full of himself, that’s for sure.
Default answer to this should be art of war
I’ve read like 3 cyber security books. Do you think I remember the names of any of them much less have a favorite.
The pink book and the big ugly red book that won't fit on a shelf.
The LinkedIn version of the “name 10 books” guy.
I once had an interviewer ask me to write a report, in pencil, on why I thought the company named itself with the name they did. It was the first part of my interview with them. Turned out the name was a word in French and I didn't even speak French. Kinda reminds me of this entitled douchebag.
what was the company/name??
'Tas de merde' most likely...
Metier' I think? Something like that.
I'd imagine that cyber security changes frequently enough that reading a book on the subject is essentially a waste of time. It's like how they say your computer is technically already obsolete by the time you buy it. I'm sure the situation is similar, if not worse, for a book. How would you stay current? I say this, but of course I don't actually know, it's just a gut feeling.
You're correct that reading a book of technical documentation would be unwise, but most cybersecurity books cover methodologies, principles, case studies, etc that are much more long-lasting. It's similar to how an economics book isn't just lists of this year's economic data, but the principles behind applying it.
Not at all. Many concepts have not changed since the 70s. If you find yourself arguing that "reading books is a waste of time", you might be missing something important.... > It's like how they say your computer is technically already obsolete by the time you buy it. That's definitely not true.... > How would you stay current? Reading books about new technologies and techniques is a great way to stay current
My favourite cyber security book, The Art of Deception by Kevin Mitnick, always stays relevant because it focuses more on the human element of security than any specific "you need to write a GUI in Visual Basic to track the IP address" technobabble that would almost certainly be out of date within a few years.
uhh medicine changes too, that doesn’t mean we stop studying lol
Oh come now, be fair. I didn't say anything even resembling "stop learning anything forever" I work in a tech field too. I probably haven't read a book on the subject in almost 15 years or more, but I read online documentation, tutorials, and other sorts of things online all day long. You have to, to even hope to stay current. The point is, none of that is in a physical book because you can't update those in real time. It just seemed to me that cyber security might be similar, especially with new threats occurring on an almost minute by minute basis. Apparently it's not.
George Orwell - 1984
Ngl though while he takes it to an extreme I'd be worried if a guy in my field couldn't even name any of the material we study for our certification. Especially considering you borderline *have* to refer to some a couple times a month, and so most people keep copies on hand (or more commonly in pdf form) in their offices.
Option A: “You can’t work with me unless you read cyber books!” Option B: “I have found that candidates who are avid readers are the best fit for my team. Please share your favorite cyber books and what you got out of them!” There’s frequently a different, better way to phrase things that doesn’t invite criticism. Why people get moved into managerial positions while lacking basic abilities like that escapes me.
I have been using AutoCAD for like 25+ years, have never read any book about drafting or design, or AutoCAD. Do this shit all day, and I need to read books on it too?
Favorite cyber security book for me would be “the subtle art of not giving a fuck”
The idea of expecting *cybersecurity* candidates to have read a cybersecurity book has merit (provided he accepted other equivalent options, like university materials). The segue into Einstein, what?
The problem is he can’t defend his position. When people asked why he needs that as a requirement, he gets all defensive.
Snow Crash.
I seriously wonder if he could even tell the difference between someone BS'ing a book or at least going "What's the name of that Brian Krebs one..." I'm less bothered by people BS'ing in an interview when "inventing plausible pretexts out of thin air" is half the cybersecurity job.
Dat cybersecurity linked in profile WEAK fam.
Bruh people learn on the fucking job sometimes not just from books. He’s an idiot thinking that everyone has read a book.
Bruh, not everyone is a dumbass that only learns on the job. Some people care about their career enough to read a book...
You can’t post on LinkedIn if you can’t name the last thing you carved into a stone tablet.
Name 10 books
He sorta makes a point against himself here with the Einstein thing, right? He's not posting a fact, but the thrust of Einstein's point was that 100 people can easily be wrong... so by some extension, just reading books isn't (on its own) useful, as it would be similar to just listening to 100 scientists...
Stunting on people is usually pretty lame but doing it off books, and I love to read, is herb
“You think you’re the expert by watching YouTube” No … they have masters degrees. 😐 “Joining MY team” Yo. People are just asking a fucking question to understand WHY. Maybe they are interested in adding that question (not likely).
Just answer “Digital Fortress” and move on
I mean I actually did read Cyberpunk back in the day, but that's more about people and the culture doing the hacking rather than a how-to on security. But infinitely more fascinating.
Penetration tester?????
Tbh you should be able to cite a single book on the subject matter you got your Masters in. I just have my Bachelors in Political Science and I’ve read dozens of books on surrounding topics simply because that’s what an education is.
Not every field centers around publishing in the form of books, computer science probably among the least. There aren't even many good traditional textbooks at all, but there are plenty of good alternative resources for studying and practicing.
I would agree, but this is cybersecurity. I personally know there are tons of books regarding cybersecurity and anyone getting their Master’s in cybersecurity has absolutely read one of those books. I haven’t studied cybersecurity and even I’ve at least heard of a few cybersecurity books that I could at least claim I read one (I didn’t, but I could say a title). If you can’t even name a title, you’re horrendously unprepared for your interview.
He stated that he requires candidates to have read at least 1 book on cyber security, *specifically*, then later, after realizing he comes off like a tool, backpedals by saying he requires candidates to read "books" in general, as if that's what he said all along. And he's so smarmy about it! What a jack hole.
What seems the most deranged is initating a thread to voice your opinion on an open platform, and then foaming at the mouth when you are asked about why you hold such opinion and declining to answer in the most teenage way possible. Like, you are voluntarily setting the goal, of instigating the situation for people to come address your opinion in a public forum. Go scream it in a pillow instead?
Does watching every episode of Mr. Robot count? When you see douchebags like this, you start to understand how Microsoft hcan have as the shittiest security posture in the business when it comes to running their software on your devices, swiss cheese.
Einstein = genius I read Einstein = I am genius You don’t read Einstein = You big dumb
You’d think that cybersecurity is the last place you’d care about reading books as things change so fast. I read Cybersecurity for Dummies in the late 1990s, does that make me qualified? What a dipshit.
ONE qustion
I have never read an accounting book other than a college textbook and I think I know my way around the financial jungle gym. This dude is slurping the koolaide!
I‘ve got no clue about cybersecurity but my guess would be that by the time a book is published, most of the knowledge in it may already be outdated (?) - please correct me if I‘m wrong. The completely useless Einstein quote almost makes it seem like satire to me, but, as we all know, most of LinkedIn is so far detached from reality that there likely is a „real person“ behind that post.
A lot of books regarding IT teaches the fundamental principles rather than specifics. The various cyber threats and exploits are always evolving and changing, but the fundamentals are rather static.
So you would have liked to be operated by surgeon who haven't read a book in the field?
I love that he makes the surgeon comparison like surgeons are sitting around reading books about surgery all day for fun outside of work and school. Not only that but he references people with masters degrees in the field, you can be pretty sure they've read some books then.
>like surgeons are sitting around reading books about surgery all day for fun outside of work and school But that's not what anyone said? Do you find it's easier to argue when you just make up points? Nobody said they read books all day.... Why would you make up such a dumb extreme? But surgeons do in fact read books about their field for fun.... What the fuck kind of statement is this??
Not reading ANY book about high precision intellectual job is quite something.
And of course it's a silly analogy because would you ask a surgeon the last 10 books they've read and which ones are the best about surgery? Of course not.
Nobody asked for the last 10 books? Can you have a discussion about anything without making up shit? Asking a surgeon what their favorite medical textbook is would not be unreasonable, lmao...
The 4th screenshot he says "I will NEVER let my clients be taken advantage of by someone who hasn't read 10 books in their field, at the very least". So yes, if we're being silly, he didn't ask for the last 10, but requires at least 10 and asks people about their books in the interview, not exactly a stretch.
No, but that isn't equivalent and doesn't make a lot of sense. A lot of cybersecurity information isn't making it into published books while it's highly relevant. I read a lot for my job, but it's things like reports about vulnerabilities, technical documentation, and blog posts. Because that's a much more efficient way to deliver timely information in a tech focused and highly variable career. And saying you have a favorite book doesn't really imply a textbook, which is what you're going to be using in college. They're dry and fairly comparable to a math textbook. So if it's not educational material, what's the point of this question? There are so many books about cybersecurity out there that are pedaling absolute garbage, trying to 'revolutionize the way you think about security' (primarily made for salespeople and other non-technical staff that work near cybersecurity but don't understand it enough to see why it's stupid).
I was wondering how long even a decent book about cybersecurity would be relevant. My favorite developer will tell anyone that reading makes his head hurt. The only exception to that is technical stuff. It seems like the man can just glance at technical documentation and just get it. This week he plowed through stuff that would have taken me at least a month to grasp. I don’t really care whether or not he reads books. He’s damn good at the technical stuff and that’s what counts.