How to start in #InfoSec

1. Pick up a CISSP book and get basic concepts, block the chatter about cert or no cert you still need to get security basics.
2. Learn about Windows, yes windows you won't find your clients running Linux except on few servers.

3. Learn basics of programming, no you don't need to write or built next gen SAP software but you need basics.
4. Learn about OWASP top 10 at the minimum. No i won't ask you to do WebApp Pen test but atleast learn how the web app hacks work.

5. At minimum learn how to use and interpret output of these tools nmap, Nessus, OWASP ZAP.
6. Read security trends reports like @VZDBIR

7. Be a good listener, you are there to solve a problem not brag about your knowledge or tell them how incompetent they are with their cyber security hygiene.
8. Our end product is Report or Presentation, polish your report writing skills.

9. Learn to simplify things for non InfoSec peeps, don't hate it they are the one who pay your salary.
10. Finally don't brag, don't be a dick and don't send dick pics, be nice to people, respect people who have different skin color or genitalia than yours