I may have an opportunity to get into an Internet Security position and I was wondering what all I need to learn to be effective in that role? I am studying Java and XML already, would those skills be applicable? Do I need to learn about TCP/IP, routers, networking, UNIX, NT, what? And in what order? As part of my regular AS/400 duties, I handle security on our AS/400s. However, the web servers are NT so I have no idea if the security concepts that I know and love on the 400 will help me in this Cyber Cop role. Also, if any of you have career advice about this, I am all ears. I see this as an ongoing need - job security, if you will (no pun intended). There will always be hackers wanting to cause trouble, and (I believe) there will always be a need for people to stay one step ahead of them. Or am I mistaken? To sum it up: What would I need to learn in order to manage internet security, and in what order? What do ya'll see as the future job market for Internet security gurus? Thanks in advance!