Between zero day news flashes and stunt hacking reports, there are a lot of false conceptions about what it's like to be an infosec professional. So what should you focus on to get into the world of infosec testing or to become a security consultant? What background do you need? How valuable are conferences and certifications? These are just a few of the questions our guest Tom Van de Wiele answers to help you on your way in this rewarding field. Tom is a principal security consultant at F-Secure with 15 years of infosec experience. He specializes in red team operations and targeted penetration testing for the financial, gaming and service industries. When not breaking into banks, Tom acts as an advisor on topics such as critical infrastructure and IoT as well as incident response and cyber crime. Links:  Episode 2 blog post Tom's Top 21 Tips for Becoming an Ethical Hacker