Why become an IT Security Professional? Part 2

Yesterday we talked a little about why you should NOT become an Information Security Professional. It was only one of the reasons why not to, but it's one reason that I hear people list as to why they do go into information security. Other reasons not to are things like, it's a glamorous job or it's the hot thing right now and you are likely to land a job quickly. Ask someone who spends their days monitoring IPS or firewall logs just how glamorous it is. :) Also you don't want to do it because it's something in technology and you like technology. If that's the case find out exactly what it is about technology that you like and do that.

So why should you consider becoming an IT Security Professional? Do it because you really can't see yourself doing anything else. Do it because you can't not do it. Do you have a passion to secure technology? Then, by all means, become an information security professional. Do it because you have a passion for it and because you are good at it. Passion is necessary (in my humble opinion) but by itself it won't do the job. It's like most any profession. You may have a passion for it but not be any good at it. So make sure you are good at what you do. Your niche may be network security, systems security, application security, database security, web security. It may be compliance and policy. Maybe it's white hat hacking. What ever it is that is what you need to focus on. If you are good at it and have a passion for it then chances are you will be successful at it and you probably will make good money doing it. While you're at it learn what you can about the other disciplines within IS so you will be well rounded.