#68 Q&A: Why You’ll Fail in Cybersecurity if You Stop Learning

Show Notes

In this episode of The Hacker’s Cache Podcast, Kyser Clark answers real cybersecurity career questions from whether the OSCP or Hack The Box CPTS is better for breaking into pentesting, to how to renew your Security+ the smart way, and why cybersecurity isn’t for those who hate learning. He also exposes the truth behind bootcamps, entry-level job myths, and AI’s impact on the job market. If you’re trying to start or advance your cybersecurity career, this episode gives you the honest, experience-based advice you need to hear.

Connect
---------------------------------------------------
https://www.KyserClark.com
https://www.KyserClark.com/Newsletter
https://youtube.com/KyserClark
https://www.linkedin.com/in/KyserClark
https://www.twitter.com/KyserClark
https://www.instagram/KyserClark
https://facebook.com/CyberKyser
https://twitch.tv/KyserClark_Cybersecurity
https://www.tiktok.com/@kyserclark
https://discord.gg/ZPQYdBV9YY


Music by Karl Casey @ White Bat Audio

Attention Listeners: This content is strictly for educational purposes, emphasizing ETHICAL and LEGAL hacking only. I do not, and will NEVER, condone the act of illegally hacking into computer systems and networks for any reason. My goal is to foster cybersecurity awareness and responsible digital behavior. Please behave responsibly and adhere to legal and ethical standards in your use of this information.

Opinions are my own and may not represent the positions of my employer.

Chapters

• 0:00: OSCP vs CPTS: Which Cert Actually Gets You Hired as a Pentester
• 9:27: If You Hate Learning, Cybersecurity Isn’t for You
• 15:38: Security+ Renewal: SecurityX vs CCNP Security Explained
• 20:55: The Harsh Truth About the Cybersecurity Job Market Today

Transcript

Hey bro, if a person doesn't like learning new stuff all the time, would you say cybersecurity isn't for that person? No, it's not for you. If you don't like learning all the time, then you're going to have a bad time in cybersecurity because it feels constantly changing. The fundamentals are always the same, but there's nuances that are constantly changing.

 

New technology, new frameworks, threat actors constantly changing their attacks and new tools. AI is coming out and there's a million AI tools that come out every day. So yeah, if you don't like learning new stuff all the time, this isn't for you.

 

Because if you don't learn new stuff, you will be out of a job. Welcome to The Hacker's Cache, the show that decrypts the secrets of cybersecurity one bite at a time. I'm your host, Kyser Clark.

 

And today I have another Q&A episode where you, the viewer slash listener, ask questions and I answer them in depth here on The Hacker's Cache podcast. And if you want to know how to submit questions, just drop questions in YouTube comments. I will see them.

 

And whatever I think the best questions are, whatever I think you need to hear. I'll put that on the show. So let's go ahead and get into it.

 

And the first question here, I'm actually going to rope two questions into one. So this is going to be a little bit of a double doozy. And after I read both questions, I want to give you an answer that applies to both questions because they're very related to each other.

 

So first question here, I have five years experience as a system admin, with security plus and CSA plus looking to break into pentesting. Do you believe jumping into OSCP would help me get my foot in the door with that job? Or do you believe there is a better cert for that? And then the second question is, would you recommend doing the hack the box CPTF path and certificate to a pentesting job? If so, at what point would be viable to do so? So this is asking for about certifications to break in and land a job as a pentester. And that's something that I have done.

 

It's something I'm doing right now. I work as a pentester full time for those who don't know, for those who are new to the show. And I do believe that the OSCP is your best shot to being recognized by hiring managers and recruiters currently.

 

And I say currently because I think hack the box CPTS is starting to slowly and I mean slowly pick up steam. It's getting a lot of reputation from pentesters in the field and other hackers who are out here doing it. But the hiring managers and recruiters have not yet caught on to the hack the box certifications, the TCM certifications, the try hack me certifications, but they do know about offset because offset's been around for a very long time.

 

For some reason, hiring managers and recruiters, they're not up to date. Well, it's like these newer certifications that came out and these newer certifications, they are newer. But first, like I said, for some reason, the hiring managers and recruiters don't know about them.

 

And a little bit of a hot take here, you know, the hiring managers and recruiters, they expect you to be up to date, but they're not up to date themselves. It's a little bit ridiculous, my opinion, but I digress there on that point. When it comes to you breaking into pentesting, I do think OSCP is your best shot currently because it's widely recognized.

 

It is the most in demand pentesting certification on the job market today. I don't see it slowing down for at least a few years. And by the time some other certification overtakes OSCP, the field's going to change so much and this information is going to be irrelevant.

 

If you're trying to break into a pentesting position right now, OSCP is where it's at, in my opinion. And there might be a future where TCM Security, PJPT, sorry, PNPT, and the Hackintosh CBTS are the top dogs in certifications to help you land pentesting jobs, but that's not what it is right now. And you need to go after what it is right now.

 

Unless you're looking to become a pentester like 10 years down the road, maybe you can kind of skip the OSCP because I do think maybe in 10 years, Hackintosh might overtake it. But as of right now, and I think for at least the next five years or so, OSCP will be the top one. So that's where you should go, in my opinion, if you want to get into pentesting.

 

Now you don't have to have OSCP. There's tons of pentesters that don't have OSCP. You don't have to have it, but it does open up doors for you.

 

Whether you want to acknowledge it or not, it does help you. Is it the best pentesting certification out there? Maybe not, but it's listed the most. And the whole point of a certification is to land interviews and to build skills.

 

And OSCP will absolutely help you land interviews and it's going to build the skills. It might not be the best skills. A lot of people are saying that the Hack the Box CPTS is like the new gold standard in terms of real world pentesting and the actual skills you build through the course and through the certification.

 

And it's even harder than OSCP. While you might have better skills, it's still worth pursuing the certification that the recruiters and hiring managers know about. Because if you have all the skills in the world, but you don't know how and you can't demonstrate that to a hiring manager or recruiter, then it's kind of not as effective.

 

And that's why the OSCP, despite it might being a little bit less on the skills, it's way more recognized. And hiring managers and recruiters, they know what the OSCP entails. They don't know what the Hack the Box CPTS entails.

 

So where does the Hack the Box CPTS fall into play here? I would say it's after you land your pentesting job. Once you break in the field, you get that first pentesting job, then go for the Hack the Box CPTS. Because once you're in, you need to develop your skills.

 

Because your goal is to get better and to stay up to date and to knock all the rust. You don't want any rust building up on your skills. And you might think that all I'm working full time as a pentester, how can the rust build up? It still does.

 

Trust me, because you're not hacking 24-7. You're not hacking 8 hours a day on your pentesting job. You're writing a lot of reports.

 

You're doing a lot of client calls. You're doing a lot of team meeting calls. And it's a lot less hands on keyboard than you think.

 

So the rust can build up even if you're working 40 hours a week as a pentester. Because I would say you're lucky if half your time goes to actual hands on keyboard and the terminal actually pentesting stuff. So yeah, CPTS is going to help you knock the rust off, help you grow your skills.

 

And from what I'm seeing on the field, the CPTS might actually overtake the OCP as the most in-demand certification. And if it does, you'll be in prime position because you already have it. If you get it after you've got your first pentesting position.

 

But I think that the OCP is definitely going to help you get those interviews for now. And for those who don't know, I do not have a CPTS. I do have an OCP and the OCP was a key factor in me landing my current pentesting position.

 

It was a key factor in building the skills I needed to do this job. And the CPTS is something that I have wanted and it's actually something I'm pursuing. I've actually been doing the CPTS pentesting path, although I am going through it a lot slower than I would like.

 

A lot slower than my other certifications. And the reason for that is because I don't think it's like super crucial to my career. It's more like a kind of nice to have, not a need to have.

 

So that's my opinion on it. I do think creating content is more beneficial for my career right now, which is why I spend 40 plus hours a week creating content on top of my 40 hours a week doing my job. And then if I have 5 to 10 hours left over, then I will put that in the training.

 

So I'm not training as hard or as much as I used to because I think personal branding is a key separator going into this AI era of the job market, which is why I've been tripling down on content creation. And I haven't been learning new things as much and as fast as I used to. And that could be a mistake, but I think content creation is maybe not just not just content creation, but just building a self brand, building a personal brand, I think is huge in, like I said, the AI era job market in the future.

 

And that's where I'm betting my money, but we'll see how it plays out. So personal branding is everything nowadays, in my opinion. All right, question number two.

 

Well, I guess it's two and a half. It's three because we had two questions before. So next question.

 

Hey, bro, if a person doesn't like learning new stuff all the time, would you say cybersecurity isn't for that person? And I know it's not for you. If you don't like learning all the time, then you're going to have a bad time in cybersecurity because it feels constantly changing. It's always the fundamentals are always the same, but there's nuances that are constantly changing new technology, new frameworks, threat actors, constantly changing their attacks and new tools.

 

AI is coming out and there's like a million AI tools that come out every day. So yeah, if you don't like learning new stuff all the time, this isn't for you. Because if you don't learn new stuff, you will be out of a job.

 

You will be out of a job. If you just break in and you just do your nine to five and you're not upskilling, you will lose your job. You will be unemployed.

 

You do need to spend some time outside of work upskilling. And if you don't get it during work, if you get it during work, that's great. And that's rare for most people.

 

So if you're not getting time to train during work, then you have to do it outside of work. And don't look at it as, oh, I'm putting time in for my employer after hours. Look at it as I'm putting time in for myself to feature proof myself in this AI era job market where everyone's going to get replaced by AI.

 

And you don't want that to happen to you. And your roles are dying out and AI is replacing them. So you need to constantly upskill.

 

And like I said, it's not for your employer. It's for you. It's a self-investment into you.

 

So don't look at it. I always tell people like, oh, you got to put in a time. You got to put in a stupid amount of hours of learning.

 

And I do agree with that. But a lot of people are like, oh, I don't want to, I don't want to be a slave to my employer. I don't want to put in extra time at work and not get paid for it.

 

And that's true. Like you don't want to get taken advantage of when it comes to like working for your employer. This isn't that.

 

This is you putting time in and learning new skills to keep yourself employable. Because while you're not getting paid for it, for example, you go out for a certification in your free time after work, getting that certification is going to keep you in the game. Because if you don't upskill, then like I said, you're going to be out of a job.

 

So you are going to get paid for it, but it's not in the way you think you're going to get paid. It's just keeping your current job or even leveling up and going from, you know, middle level to senior or entry level to mid level, wherever you're at. So, and you can get raises for that too.

 

That's another thing too. The people think, oh, like if I train outside of work, it's a waste of time because I'm not getting paid for it. It's like, well, if you get three, four or five certifications outside of work, then you can go to your employer and ask for a raise.

 

And I did that actually. My first year of pen testing, I asked for a raise and I got it. And one of my big things I led with was, hey, I went and got five certifications this year.

 

And I'm actually in cybersecurity and I asked for more money and I got it because I put in time after work. So you do get paid for it. It's just the benefits are down the road.

 

They're not immediately. So don't be afraid to upskill. And back to the question, if you don't like learning new stuff, you need to find a different profession.

 

But I think the days of coasting and the days of clocking in and clocking out every day and not doing anything in your free time to level up are gone. A.I. or A.I. is replacing those types of people, the people who just clock in in the morning, clock out, and then they just watch Netflix at the end of the day or whatever they do at the end of the day. Like those days are gone.

 

The people who aren't putting in extra time getting replaced by A.I. in any profession, not just cybersecurity, any profession. And that's just the job market going forward from what I'm seeing on the board. We've already seen tens of thousands of maybe even hundreds of thousands of tech workers get laid off and it's because of A.I. A.I. is replacing these people.

 

We also see that the job market, if you're not familiar with what's going on in the job market right now, they're calling it a no hire, no fire, which means they're not bringing in new people, but they're also not firing people, which is good if you're already in, but you still need to level up because you can't assume that they'll never fire you or they won't cut you off or lay you off because they are laying people off. But the job market's kind of stagnant right now. And the reason for that is because instead of bringing in new people, it's easier just to figure out how to automate with A.I. And that's why there's no entry level jobs nowadays, because the internships, the entry level jobs have been replaced with A.I. So there's there's that.

 

So that's something to consider if you are trying to build a career in cybersecurity or tech or really anything nowadays. This kind of applies universally. And this is just my bold predictions for the A.I. era job market future.

 

Keep in mind, I am an employee just like you. Maybe you're not an employee, but I'm an employee. I'm not a hiring manager.

 

I don't own a business. I'm just an employee that does the work at my job as a pen tester. And I think about my career all the time, which is why I try to give the best career advice I can, because it's something that's on the forefront of my mind every day.

 

Moving on to the next question. I earned my CCNA earlier this year. I was hoping that would be enough to automatically renew my Security+.

 

That turned out not to be the case. If I earn a CCNP security cert, however, that would and I was planning on studying for my CCNP next anyways, though I was originally looking to get CCNP Encore first. Should I get my SecurityX in order to renew or should I pivot to CCNP security and go that route? I can also renew using CISA learning, formerly FedVTE, which would be quicker and easier.

 

But if I could renew my, but if I could renew by earning a new cert, that would be ideal for advancing my career. Thankfully, my Security Plus doesn't expire until December of next year. So I have ample time to prepare any advice on which path to take.

 

So this is a mouthful here. Basically, what you're saying is, should you renew Security Plus by going for CCNP or should you go SecurityX to renew CCN, sorry, not CCNP, Security Plus. So once again, should you renew Security Plus with CCNP or should you renew Security Plus with SecurityX? And it really depends on where you're at in your career.

 

If you are trying to become a cybersecurity engineer or are already a cybersecurity engineer, the CCNP security is a chef's kiss, literally a chef's kiss that's gonna set you apart. I think the CCNP security is where it's at for a cybersecurity engineer only. Maybe there's other roles that are dealing with infrastructure a lot in cybersecurity, but cybersecurity engineer or similar roles, they're the ones that are benefiting from those Cisco CCNP certs, specifically the security version of the CCNP.

 

If you're not a cybersecurity engineer or you're not trying to become a cybersecurity engineer, CCNP is overkill. I would not recommend it. If you're trying to become a sock analyst, pen tester, GRC professional, I would not take, I would not go for the CCNP because it is overkill.

 

You don't need it unless you're working with like Cisco routers and switches and all the other Cisco infrastructure. There's so many Cisco tools out there. If you're working with Cisco stuff all the time and like you're in the dashboard actually configuring this stuff, then get the CCNP.

 

But if you're not doing that, then don't get the CCNP. If you're not a cybersecurity engineer, you're not trying to become a cybersecurity engineer, the best thing to renew security plus is not the security X. You're actually missing some steps. After security plus, you should go either the CYSA plus, that's cybersecurity analyst plus, or the pen test plus, depending if you want to go offense security or defense security.

 

And you can even get both. I have both because I think as an offense security professional, as a penetration tester, obviously the pen test plus is way more useful for me. But having the CYSA plus, understanding how the defense operates, understanding the defender mindset, understanding how to block attacks, how to prevent attacks, how to respond to attacks, that makes me a better penetration tester and a better red teamer once I become a red teamer.

 

So I think having both is nice, but at the very least, get the one that's more suitable to your path. So you're going to go blue team, go CYSA plus, you're going to go red team, pen testing, offense security, and get the pen test plus. And then what I would do is I would wait three years and then when your one's about to expire, then get the other one.

 

And then wait another three years and it's security X way down the road to renew all of them in one go. So I think the security X is like a long-term thing. I got security X because my CYSA plus and pen test plus was like two years from expiring.

 

I think I got it like a year, year and a half. So I had like a year and a half left, but I got the security X a little earlier because I had the beta and the beta exam, I paid 50 bucks past the exam. Easy peasy.

 

Didn't have to study for it. And I got it all renewed in one go for 50 bucks. So I would only go for the security X if you already had the CYSA plus, the pen test plus, and the security plus, and your search is about to expire.

 

Or if you got a $50 beta shot, but the $50 beta shots at this recording, it's October 2025. And the next security X beta is not going to happen for another two years or so. So it's gonna be a minute before we see another security X beta.

 

So that's my advice there. Next question. I completed a bootcamp, got my security plus certificate.

 

It's been seven months looking for a job and I don't even get a call back. I don't understand how it's advertised as a growing field in next up in need of candidates. Like how does anyone land their first role? Or did I just get scammed by a school? So this is the problem.

 

This is the problem. This is why my career advice videos and career advice podcast episodes outperform everything else because this is the number one problem people are facing. And this is why I keep making this type of content is because a lot of you people have this exact problem and it's not just you.

 

Everyone's having it, right? And the question is, did you get scammed? Honestly? Yeah, you did get a little bit scammed because these boot camps and these education organizations, these certification companies, the schools, they say there's going to, there's millions and millions of unfilled cybersecurity jobs. When I was doing my research before I got into cybersecurity, the employment rate was 0%. And I'm like, well, I'll always have a job or at least for the next 10 years, you know, there's no signs of a slowing down.

 

And then it seemed like, well, it was time for me, like once I got my degree and I got out of the military, which was five years later, I got out of the, I did six years in the military, but I didn't decide to get into cybersecurity until I was in the military for a year already. So that's why I say five years later, even though it's in for six years, but five years later, I'm trying to find a job. And I'm like, dude, this is harder than I thought.

 

Why is it so hard? I have 12 certifications. I got the OSCP, the tippity top most in-demand pen testing certification out there. I got the CISSP, the most in-demand certification across all cybersecurity positions.

 

I got my degree. I'm working on my master's degrees. I had the OSWP, which is another offset cert.

 

I had the EJPT, which is a junior pen testing cert. I had all these certifications. And then I had at the time, 12 certifications in total.

 

And I was working on the OSWA at the time. And I thought it was a no-brainer. I thought it was a no-brainer to hire me.

 

I should have 20 offers. I should have companies competing for me. They should be trying to outbid each other for my talent.

 

And that just wasn't the case. I had a job offer that I accepted. And it got withdrawn.

 

And the reason why it got withdrawn was because the contract got deleted. The client didn't need the work done anymore. And because the client didn't need to work anymore, the work got cut out.

 

And because work got cut out, that position got cut out. So they withdrew my job offer. And I had to scramble to find another job offer right before I got military.

 

And then I ended up getting two other job offers. Granted, I wasn't interviewing at like three to five other companies at the time. But I got two solid job offers.

 

And then I accepted the one that was better for me. But that was a little bit less than I thought. And the pay was a lot less than I thought too, which was very unfortunate.

 

But it is fortunate that I did break in the field and I'm doing pretty good for myself now. Even though I'm making a little less money than I thought I was going to be making out of the military, which is, it is what it is. But it's just the reality that the numbers online don't really match up with reality, unfortunately.

 

But yeah, anyways, that was a long winded way of saying that, yeah, these companies kind of lie to you. There's not that many open positions out there. There's really not.

 

Now keep in mind, I only applied for remote jobs and I only applied for pen testing jobs. I think I could have easily got some soccer analyst or jobs or whatever, but I was only applying for pen testing and remote jobs, which severely limited what my options were. But these companies, when I say these companies, like the certification bodies, the education companies, the boot camps, the schools, they are like, yeah, 0% employment rate, millions and millions of unfilled jobs, growing field, not slowing down.

 

And they just got it wrong. Either they got it wrong or they deliberately lied to you. I don't think they, I think it's a little bit of both.

 

I think they kind of inflated the numbers for one, but I think they were just kind of predicted the future incorrectly as well. And well, because these certification companies and these boot camps and universities were talking about how cybersecurity is such a growing field, you can make six figures by getting one boot camp done or one degree. Everyone rushed in, everyone rushed into the field.

 

And I'm not going to lie to you. I mean, that was one of the reasons why I went and got pursued. This path was for the money.

 

It wasn't all for the money, but if the money, if the salaries weren't as high as they were advertised, I would have not pursued this profession. Right now, it wasn't all about the money because I like working in tech. I like working on computers.

 

I always have liked working on computers. I used to build computers in my spare time when I was graduating high school. So I always enjoyed tech, always enjoyed it.

 

I was a huge gamer, so I was always involved with tech. I always played the family computer at home and stuff like that. So it's not like I pursued something just for the money.

 

It's just I doubled down on this profession because of the money. And it was for me a way to get a six-figure salary in an area that I liked. And it was the only, it seemed like it was the only option for me to get a six-figure salary in an area that I liked.

 

Yeah, I could have, if you want to make money, then you can go pursue something else, like go be a lawyer, go be a surgeon or something, you know what I mean? Because it's going to take just as much work. And that's another thing is they made it seem like it was kind of easy to break in the field, made it seem like there was unlimited slots. And it seemed like an easy way to make it like get a six-figure job, but it's just not because there's a lot of work that's involved.

 

And I knew it was going to be a lot of work to be a pen tester. Like I knew that when I decided and I'm like, why not do it? But I will admit it was a little harder than I thought it was going to be, to be honest with you. So hindsight is 20-20, but looking back at it, I wouldn't change anything for anything.

 

It is a lot of work. So did you get scammed? I don't know, maybe a little bit, but I mean, you said you passed one bootcamp and you got one certification and it takes more than that. You got to have more certs than that.

 

You got to have more training than that. You got to have more courses than that. Because as I said, the money and these advertisements for millions and millions of jobs growing field and all this stuff, it just made people fly into the field.

 

And there's nothing wrong with that, by the way. I'm going to be making a video about this later on, but there's nothing wrong with like getting in the field for the money. There's something wrong for getting in the field just for the money.

 

You have to like the job enough to justify it. But because people are flying in, there's a thousand applicants per one job and the best person is getting the job. Well, that's a hard competition to win.

 

One out of a thousand people. I mean, that's a hard competition to win. And it is a competition, whether you recognize it or not.

 

I say that all the time. And you just got to outwork everybody else. That's really what it comes down to.

 

And the reason why I was set up for success was because I was grinding hard, getting all my certifications and doing all the extra stuff. I thought at the time I was extra. I was doing all the extra stuff to increase the salary, to have more negotiating power, because I was like, oh, man, if I do the bare minimum, I get the degree and I get a cert or two, you know, I can get a hundred thousand dollars a year or whatever.

 

I was like, I don't want a hundred thousand dollars a year. I want $150,000 a year. And that's why I was like, let me just get more certs.

 

Let me get more experience. Let me get more training. And then the more I have, the more negotiating and bargaining power I have.

 

But turns out all that extra work really just made me a top candidate. And then I ended up getting a below average salary before I, when I got in. Well, it was about average.

 

It was about average for an entry level for a pen testing. It wasn't stellar. It wasn't above average, which was what I was shooting for.

 

But hey, you got to start somewhere. And yeah, so that's, that's why I ended up breaking in is because, you know, when I was shooting for $150,000 salary, maybe more, it really just made me the best candidate out of everyone who was applying for these positions. And, uh, that's what I recommend.

 

That's what I recommend. You should be putting in as much time and effort as you can and getting as many certs as you can, as many degrees as you can, as many hack the boss machines, how many try hacking rooms as you can. You need to be doing everything you possibly can.

 

And I obsessed over it, by the way, like I quit playing video games. I quit socializing. I stopped playing fantasy football.

 

I stopped watching football. Now I still enjoy a casual football game here and there. I haven't played video game in probably a month now.

 

I play it very rarely. I play video game and I quit playing them for years. And even with me already in the field, I still can't find a time to, to quote unquote, enjoy life.

 

So that's the, that's what it takes. That's the investment it takes. I used to call it sacrifices, but it's not a sacrifice because you're going to get something back in return for it.

 

And it's, you got to think of it more of as an investment. And if you're not willing to make that investment, it's probably not the field for you. So you need to, and I was obsessed and I still am, right? That's why I get on here and make content in my free time to help you out.

 

And this is why I'm always learning and training. I know I said that earlier in the podcast, so I have been slowing my training down, but I never stopped. I still get on Hacked Box Academy and I still go through my CVTS path and I'm going to take the exam eventually.

 

And there's all kinds of other certifications that I want. You know, I have 19 certifications currently, and there's like another 19 that I want to get because there is a lot of information to know. And the more you know, the better off you're going to be.

 

So that's my advice. You just got to work. You got to look at it as a competition.

 

And it just comes down to who puts in the most work. I'm not the smartest person in the world. I'm not the most talented person in the world.

 

But what I am is someone who works all the time. Like I show up every day and do the work, even when I don't feel like doing it, because there's going to be days you don't feel like doing it. And I do it anyways.

 

And I sacrifice a lot of sleep because of it. And I don't indulge in a lot of the finer things in life. And if you're not willing to make those investments, then find out the field for you.

 

I mean, maybe you can break in by doing your eight hours a day, 40 hours a week, and that's it. But I think if I wouldn't hustle as hard as I did, I wouldn't be in the position I'm in. So like I said, you don't have to be the smartest, you don't have to be the most talented.

 

You just have to have a high work ethic. And that's really the key to success is just the discipline showing up every day and doing the work. And you'll learn it eventually.

 

Some people learn things faster than others. I'm not that fast of a learner. I'm really not.

 

That's the reason why I have 19 certifications, because in order for me to get OSCP, I had to get 10 certifications before that, because there's a lot of prerequisites you have to know to pass OSCP. Some people can go straight to OSCP and get that as their first certification. And I don't know how you do that, which is, you know, if you can do that, by all means, go ahead and do that.

 

And some people, there are a lot more people that are more talented than me, they grasp the concepts faster than me. But the reason why I'm in the field and a lot of people who might have more talent isn't in the field is because I work all the time. Work ethic beats talent every single time.

 

And I'm proof of that. And I'm telling you right now, if you just show up every day and you do the work, you'll break in. So hopefully that helps you out.

 

And that's all the questions I have. If you have more questions, drop them down in the comments, and then I will potentially feature them on the next Q&A episode. If you're on audio, rate the show five stars.

 

I see you guys rating the show. If you've enjoyed more than one episode, rate the show five stars. I'd really appreciate it.

 

If you think the show deserves five stars. And if it's your first time here, then check out the next episode. Give me a shot and hopefully it helps you out.

 

And then rate the show after your second episode. And then if you're on YouTube, hit the subscribe button and hit the like button. And like I said, drop your questions down in the comments.

 

I would love to hear what you're struggling with. Drop your unique situations. Like feel free to drop a fat paragraph of your background and I will literally read the whole thing.

 

And if it's a good question, I'll feature on the next episode. Next Q&A episode. I do the Q&A episodes once a week.

 

Sorry, once a month. All right. Thanks for watching.

 

Thanks for hanging out. Hopefully see you next episode. Kyser signing off.