A little background, I’ve been in infosec for 2 years in a Security Analyst role doing a little bit of everything but my main focuses have been on offensive exercises (mainly testing out our protections after change control, new implementations etc) some engineering and the in house ‘malware analyst’ (mainly dynamic but some basic static analysis) for a medium sized US based energy company.
I’m really enjoying the offensive side of things but I also equally enjoy malware analysis. They’re both very interesting to me and I’d love to focus on either one as my main focus in my current role or future roles.
I just wanted to reach out and see if anyone currently does either one as their main focus and give me an insight on what your day to day looks like. Or if you have any pros and cons or just some general advice.
Thanks in advance!