How to Get Started in Cybersecurity: What Role is Right for You
Ok, now that you’ve done your homework on learning the basics and looked into some common tools and certifications to help you stand out, what roles are you most interested in? Companies want to see that you have a good understanding of the industry prior to committing to hiring and training you.
Talk the Talk
Make sure you know cybersecurity lingo … you have to be able to talk the talk before you can walk the walk. Additionally, conduct research on the different specialty focus areas within the industry and ensure that you understand the following:
- IT vs. Software Engineering vs. Cybersecurity
- Red Team vs. Blue Team vs. Purple Team
- Security Engineering vs. Security Operations
- Security Engineer vs. Security Analyst
- Network Security vs. Application Security
You will find there are many different names for the same roles within cybersecurity. Entry-Level roles include:
- SOC Analyst – Tier 1
- Junior Security Analyst
- Information Security Analyst/Specialist
- Associate Security Engineer
Another great way to show your knowledge and interest in cybersecurity is to stay up on current cyber events. For instance, you should know about recent large-scale attacks (i.e. Sunburst/Solar Winds, REvil ransom, Log4j zero-day) and if an attack type is becoming more popular (i.e. Ransomware during the pandemic), along with how to prevent it.
Create a Training Plan
To begin your cyber journey, start by developing a training plan. Review the one below for ideas when creating yours.
Your plan will differ depending on your situation – family, school, job, etc. Ensure that you create one that you can follow, and try not to overestimate the number of hours you can commit each week.
It won’t be easy, but stay motivated and get used to conducting your own research to troubleshoot problems. This piece is critical! You must be willing to work through issues and learn on your own, which is what cybersecurity analysts and engineers do on a daily basis. If you find it difficult to stay driven, maybe this career isn’t for you.
Start Looking and Stay Flexible
While cybersecurity professionals are in demand, keep in mind that there are still hundreds of applicants for each position posted. There is also a steep learning curve to enter the industry, and companies spend tens of thousands to train entry-level new hires. Be willing to accept shift work or a lower salary to get started. There is plenty of opportunity for growth and development; people move up quickly in this industry.