Embed Size (px)
Citation preview
BREAKING into
From 3 Different Career Points
CYBERSECURITY
There’s no doubt about it. Cybersecurity is a hot field. Under constant threat of data breaches and cyberattack in our increasingly connected world, companies in all sectors need professionals to help keep their information and customers safe. Demand for cybersecurity talent is at a record-high, making now an ideal time to set yourself up for success in this rewarding and lucrative career.
Clearly, the rise in cybercrime is spurring growth in security skills. To mitigate risks, businesses are actively recruiting certified security professionals to design, implement and manage cybersecurity programs. A recent report from CNBC on the new Upwork Skills Index finds the (ISC)2 Certified Information Systems Security Professional (CISSP®) is one of the 20 hottest job “skills” in the entire U.S. labor market. Not just in security – the whole workforce.
Breaking into Cybersecurity
CISSP is one of the20 hottest job “skills” in the
entire U.S. labor market. - CNBC, Upwork Skill Index
The answer will differ based on where you are in your career, what you ultimately want to do and where you see your future headed. In a field that’s as dynamic as it is challenging, there is no single path to entry. People come into it from diverse backgrounds and experiences. What they all have in common is a shared interest in technology and how it works.
Whether you’re a college student or recent grad, transitioning into security from an IT role, or looking to change careers from a military to civilian role, the following tips can help you break in from these entry points. With drive and focus, there are many strategies you can put in place to find the right opportunity.
But how do I get my foot in the door?
It’s a classic dilemma. You need a job to get experience, but you need experience to get a job. Wherever you start, all cybersecurity careers begin with general IT experience. And while you don’t necessarily need a four-year degree to get into cybersecurity, it may be required for the roles you decide to pursue.
The big security issues organizations wrestle with right now – online harassment, misuse of personal data and international privacy, for example – reflect a need for deeper education. A college degree gives you a leg up in areas critical to cybersecurity like logic, philosophy and law. Reflect on the knowledge and skills you gained at school and how they apply to security. Keep them in mind as you consider these tried-and-true ways to build a meaningful and sustainable career.
Breaking in with No IT Experience
Getting into Cybersecurity as a College Studentor Recent Graduate
Know technical basics.Not everyone in security comes from a deep technical background, but it’s important to know technical basics for most security professions. Some industry experts even advise starting on a more general technical path and then focusing on security later, once the basics have been mastered. Whatever path you choose, you will need an understanding of systems, coding, networking, and how applications are run and maintained.
Train in general IT.Finding an internship, apprenticeship or entry-level job in IT is a great launch pad: data entry, Help Desk or anything basic to learn IT fundamentals. You’ll gain a hands-on sense of IT processes and real-world business scenarios that will serve you well in your professional pursuits.
Focus your area of interest.What does your ideal security career look like? Your path in the short term will springboard your future. Roles that pave the way include systems administrator, web administrator, web developer, network administrator, IT technician, network engineer and software engineer. Sample career paths might be…
• Systems administrator – security administrator• Web developer – web security, security software developer• Network administrator – network security, network forensics
Getting into Cybersecurity as a College Studentor Recent Graduate
Get practical knowledge and experience.There are multiple ways to get this education, including books, self-directed learning (teaching yourself how to code, for example), online courses and guided training. However you choose to get started, these fundamentals will be essential as you get deeper into security work.
You can also take an alternative path that will lead you directly to professional certification – a huge differentiator among top employers globally. If you’re ready to start your certification journey but don’t yet have the necessary experience, the Associate of (ISC)2 designation can get you started. The program supports your growth and development as you work toward gaining the experience required for full certification.
Find a Mentor.An experienced mentor can provide guidance on growing your career and building your personal brand. Need ideas for finding a mentor? Attend meet-ups, conferences and other industry events for security professionals and get to know other attendees. Online networking also is a great resource for gaining practical advice.
With security job openings at a record high and growing, there has never been a more advantageous time to get into cybersecurity. For those who pursue the path with passion, drive and dedication, opportunities are plentiful and will continue to be well into the future.
CHECKLIST
Know technical basics
Train in general IT
Focus your area of interest
Get practical knowledge
and experience
Find a mentor
It’s no surprise that more IT pros are considering shifting career tracks and focusing on security. The field is in top demand, and the roles are often exciting and rewarding. Anyone with a passion for security – coupled with a desire to learn and work hard – should consider exploring the field.
Now’s a good time to consider the switch. The cybersecurity skills gap means companies are scrambling to fill security positions, and that presents an opportunity for interested IT professionals to find security work, even without direct experience. Organizations are increasingly willing to take a chance on nontraditional yet promising candidates and train them for security roles.
Following are tips for bridging the gap between a lack of cybersecurity experience and knowledge and finding a door to get started in the field.
Breaking in with No Direct Experience
Transitioning from an IT Role into a Security Role
Make the case for your transferable skills.Success in security means you need a mix of technical and soft skills. These can potentially come from any previous job experience. Enthusiasm for exploring technical questions and issues, analytical skills, and diagnostic experience will be extremely beneficial in the security field.
Project management experience and business acumen are also valuable in making the case for why you can handle a security role. Because risk mitigation and defense are expected to align with furthering the business mission, security must demonstrate some level of ROI for security investments. Business knowledge will be key for security roles going forward.
Be aware of current security issues.Awareness will also take you far in an interview. Even if you haven’t worked on current web vulnerabilities or exploit techniques, understanding them and being able to speak about them will demonstrate you are passionate about the field and taking an interest on your own time.
Follow blogs, news sites and industry leaders on social media dedicated to these topics. The world’s knowledge is already at your fingertips.
Find a company willing to invest in you.The shortage of skilled security talent gives the IT pro an opportunity to approach organizations willing to invest training and education resources that develop security skills on the job. Look for a company open to teaching, training and producing a new crop of security leaders. Ask about this during your interviews!
Transitioning from an IT Role into a Security Role
Get certified to show your dedication to the career.Getting certified builds knowledge and legitimizes your skills, proving to employers you can handle the duties of a cybersecurity position. Depending on what you’re moving toward, there are many certifications, training courses and associations available to help you reach your goals. Certifications cover roles ranging from management and cloud to software coding, programming and ethical hacking.
Aspiring cybersecurity pros who want to fast-track their careers should consider certification through the Associate of (ISC)2 program. The program allows interested professionals to take (ISC)2 certification exams without the required work experience. This designation shows you have the knowledge, commitment, resources and connections to continue your professional education.
Don’t let lack of experience be a roadblock to security success.Get started through self-directed learning and experimentation. Set up a home lab, for example, and document the systems you’re running, the work you’re doing and what you’ve learned. Contributing to open-source projects is another excellent opportunity to demonstrate your resourcefulness and skills.
While it may seem daunting to tackle a new career path without direct experience, the time has never been better to explore a role in security. Companies are seeking solutions to a talent crunch, and there are many strategies you can put in place to find the right opportunity for you.
With initiative and hustle, you absolutely have what it takes to inspire a safe and secure cyber world.
CHECKLIST
Make the case for your
transferable skills
Be aware of current security issues
Find a company willing to
invest in you
Get certified to show your
dedication to the career
Don’t let lack of experience
be a roadblock to security
success
Our nation needs more cybersecurity professionals in every sector and in every region. For veterans seeking jobs outside the military, cybersecurity is an excellent way to translate existing training and experience into new roles. Your experience and professionalism will be welcomed.
If you like technology, want to put your military skills to excellent use as a civilian, and seek a career with tremendous growth and earning potential, look no further. Enlisted and former officers often possess the mission mindset, time management skills, discipline and leadership information security demands. Consider these strategies when adding cybersecurity to your job prospects.
Breaking in with Military Experience
Transitioning into a Cybersecurity Role
Connect with fellow veterans in cybersecurity roles.Fellow veterans are the best primary resource for advice and guidance. They know which organizations are especially military-friendly and can point you in the right direction. Also use your networks to practice translating your skills, prepare your resume and get ready for interviewing.
Focus on experience immediately translatable to cybersecurity.Reflect on your military career and where you’ve had to operate with physical security and safeguards or needed to maintain document and operational security. These skills are highly transferable to a career in cybersecurity.
Perhaps above all, never sell yourself short. Veterans often underestimate their professionalism, life experience and leadership. These are key strengths in business, and the military prepares veterans for civilian careers in ways that rival many programs and education. What could make you a stronger leader than putting others’ lives ahead of your own?
Find your niche.Familiarize yourself with the many positions in the field and determine where your passion and interests are strongest. Cybersecurity is often considered a specialty field, and it pays to specialize within it. Check with the National Initiative for Cybersecurity Careers and Studies (NICCSTM) to explore various roles and career paths.
Transitioning into a Cybersecurity Role
Set realistic goals.You may have to take an entry-level position to get your foot in the door, but don’t let that deter you. Finding an internship, apprenticeship or opportunity for job shadowing will expose you to essential IT processes and real-world scenarios. Keep your eyes on the future as you immerse yourself in the basics.
Make a plan to expand your skill set now.Don’t know the first thing about information security? With the right action plan and an aptitude for technology, you are already well-positioned to make the transition. Self-study, guided training and industry certifications will put you on the right path. Reach out to your networks to get started. You needn’t wait until after you’ve retired from active duty to build these skills. Use open-source tools to expand your skill set now, including learning how to script. Also be aware of your benefits as a veteran.
According to the NICCS, demand for cybersecurity experts is growing 12 times faster than the current U.S. job market, making cybersecurity one of the most sought-after careers in the country. Security clearances, combined with IT certifications and other training, make military veterans extra attractive employees to many companies. And you are an excellent candidate for serving and protecting the nation on the front lines of cybersecurity.
CHECKLIST
Connect with fellow veterans in cybersecurity
roles
Focus on experience immediately translatable
to cybersecurity
Find your niche
Set realistic goals
Make a plan to expand
your skill set now
(ISC)2 research shows the shortage of skilled security resources is approaching 3 million globally. And the industry anticipates growing demand for security roles because the challenges we face are here to stay. Now and in the future, organizations need talented people to help secure critical assets and make the cyber world safer for all.
Whatever your entry point into the field, the right preparation, network and credentials can make all the difference. As the world’s largest nonprofit membership association of certified cybersecurity professionals, (ISC)2 is here to certify, train and advocate for you as you pursue this vital – and extremely rewarding – calling.
Now’s the time to move forward. Whether you want to get ahead as an IT professional or transition into cybersecurity, (ISC)2 can help you break in with confidence. Explore the industry-leading (ISC)2 certifications to see which is right for you. Don’t quite fit the necessary experience? Start your cybersecurity careerby becoming an Associate of (ISC)2.
Now’s the Time!
Become an Associate of (ISC)2. Learn How Today
