When we talk about “networking” in InfoSec—especially for aspiring pentesters—most people immediately think of IP addresses, ports, and three-way handshakes. But there’s another side to “networking” that has nothing to do with TCP/IP and everything to do with forging human connections.

A lot of your career progress will come from meeting the right people, getting the right recommendations, and sharing your passion with like-minded folks.

Why Network IRL (In Real Life)?

Sure, you can learn Python via online courses and perfect your hacking skills in isolated labs, but getting out there and meeting people face-to-face has its own special rewards:

• You can ask specific questions and receive real-time, nuanced feedback.
• You’ll form genuine connections and friendships that can last a lifetime.
• Many jobs and gigs aren’t publicly advertised; they’re shared via trusted networks.

A Personal Journey

When I arrived in Australia, I didn’t know many people in the InfoSec community. Some coworkers suggested I check out a local 2600 meetup. From there, I ended up meeting a lot of fantastic folks who later became some of my closest friends. That also paved the way for me to attend (and eventually speak at) the local monthly meetup, Ruxmon. These new connections even gave me the opportunity to speak at conferences—and ultimately, land jobs I wouldn’t have found otherwise. It’s a prime example of how building real relationships can directly influence your career trajectory.

Experiencing the impact of local meetups firsthand made me realize how crucial they are for fostering genuine relationships—so let’s talk about some of the best places to find them.

Where to Go: Meetups and Conferences

Below are some go-to places for making meaningful connections in the InfoSec scene. They’re all great opportunities to learn and meet potential mentors, collaborators, or future employers.

• OWASP Meetups

  OWASP (Open Web Application Security Project) chapters run monthly in many cities worldwide, and some are even online. They’re a fantastic way to learn about web application security and meet people who share similar interests.

• BSides

  BSides conferences take place in major cities globally—usually once a year. They’re smaller and more intimate than massive cons, making it easier to strike up conversations and learn directly from presenters.

• 2600 Meetups

  2600 meetups also happen monthly, but the vibe is more underground. Expect a wide range of attendees, from curious newcomers to old-school hackers. Great place to soak in some hacking history and underground culture.

• Local Conferences

  Lots of cities have smaller, local InfoSec conferences or security tracks at broader tech events. Keep an eye out for any community-run events in your area.

Volunteering: The Overlooked Networking Goldmine

Volunteering at conferences can be a powerful way to meet organizers and speakers. Conference organizers often know a ton of people in the industry—volunteering gives you a direct line to them. You usually also get a free ticket to the event, and possibly invitations to social events where you can talk shop with speakers and sponsors.

Build Connections Online, Too

In addition to in-person events, online communities can be just as valuable. Many InfoSec training companies and influencers have Discord servers or Slack channels:

• For example, PentesterLab hosts a Discord community. It’s a great place to share tips, ask questions, or even find collaboration opportunities.

• Follow your favorite speakers, authors, and content creators; most will have an online hub where you can connect with others who have similar goals.

What If There’s No Security Meetup Where You Live?

If you don’t have an InfoSec gathering in your area, don’t fret. You can still go to local dev or DevOps meetups. Why?

• They’re excellent for learning about development and operational practices—which is crucial to understand security needs especially if you want to specialize in product security or application security.

• You’ll often find security folks popping in, and you can still gain valuable contacts.

Try Speaking

It might seem intimidating, but giving a talk—no matter how short—helps you stand out. Many conferences have beginner-friendly speaking tracks. You could:

• Showcase a project you’ve worked on, like a CTF challenge or a unique vulnerability you discovered.
• Share your journey into InfoSec—what worked, what didn’t, and the lessons you learned.
• End your talk by mentioning you’re looking for a job if you are—this can spark interesting conversations.

Conference attendees and fellow speakers will be more likely to remember and connect with you afterward. It’s a great way to jumpstart those valuable conversations that lead to career opportunities.

A Few Other Recommendations

• Connect to share, not to take.

  People quickly spot when someone only wants to “get something.” Aim for authentic, two-way relationships.

• Don’t ask if you can ask—just ask.

  When messaging someone online or on social media, be direct yet polite. Don’t waste time on excessive preambles. For some people, it may even feel like a "foot in the door", hoping a small request will pave the way for a bigger one.

• Don’t be a jerk.

  It might sound obvious, but courtesy goes a long way in this industry (and any industry, really).

Conclusion

Networking in InfoSec isn’t just about IP addresses and ports—it’s also about forging genuine, human connections that can open doors you never knew existed. Whether you’re volunteering, joining local meetups, hopping on Discord servers, or even trying your hand at a short talk, every step you take to connect with others contributes to your growth in this ever-evolving field.

Homework

• Pick One Event

  Commit to attending at least one InfoSec event—online or in-person—this year. It could be a local meetup, a conference like BSides, or even a security workshop. Mark it on your calendar and make it a priority to show up.

• Join a Discord Server

  Keep learning and connecting by joining an InfoSec-focused Discord community—such as the PentesterLab server or another that suits your interests. Introduce yourself, ask questions, and share resources.

By completing these two pieces of “homework,” you’ll be well on your way to building the kind of authentic relationships that can truly shape your InfoSec career—and make the journey even more exciting.