Budapest Post

Cum Deo pro Patria et Libertate
Budapest, Europe and world news

How to get a lucrative job in cybersecurity

How to get a lucrative job in cybersecurity

One of Oscar Anaya's earliest successful hacks was in to a personal computer he shared with his older sister when he was 11 years old.

"My sister wanted to play some weird game on the computer and didn't want me to use it, so she locked it with a password," he says.

Undaunted, he began turning the machine off and on again, which led him to discover Safe Mode in Windows XP. "It allowed me to log in as the administrator of the personal computer and change the password," he says.

"My sister was baffled when she got home," he adds. "She wondered how I got in."

This early hack by Mr Anaya was just the beginning of his circuitous route into his career as an IT security, or cybersecurity, professional. His route took him from music producer to security alarm installer to an apprentice on a hacking programme.

"I've always looked at things and thought, 'How can someone abuse it?'" he says.

"That's the root of a hacker - to find how things can operate in ways they were not intended to."

As much as he wanted to work in cybersecurity, it seemed this would be an unfulfilled dream until he began actively looking for jobs in the field at the urging of his pregnant wife.

Eventually he ended up on a cybersecurity apprenticeship run by IBM in 2019. Based in Texas, he now has a full-time position with the company's X-Force Red team as a hardware hacker - hired to try to deliberately break into company systems and expose vulnerabilities.

Mr Anaya's journey is an example of one of the many diverse paths that might lead you in to a career in cybersecurity.

It's a well-paid profession. The average salary for a cybersecurity professional in Europe is around €62,000 (£54,000; $74,000), according to (ISC)², the US organisation which administers the Certified Information Systems Security Professional (CISSP) certification exam.

The sector is booming but there is still an acute shortage of cybersecurity staff

And there are still many many roles that need filling, although the workforce gap dropped from four million in 2019 to 3.1 million in 2020 according to (ISC)².

"The market is huge," says Ida Byrd-Hill, chief executive and founder of Automation Workz, a Detroit-based re-skilling and diversity consulting firm.

"With all the attacks and data breaches and data leaks, there's a lot of need for cybersecurity people," she says.

This acute demand has begun to drive hiring trends. "What recruiters are looking for is starting to shift," says Clar Rosso, chief executive of (ISC)².

"Organisations are facing the stark reality of the cybersecurity [skills] gap, so they've started thinking differently about who they're recruiting," she says.

"That starts with a mindset shift that is focused on the idea that technical skills can be taught, but there are other critical skills for cybersecurity professionals that are harder to teach," she continues. "Those are things like analytical and critical thinking, problem solving, and the ability to work well as both an individual and in a team."

Ms Rosso says a recent study found that more than half of individuals entering the cybersecurity profession now come from non-IT, or computer science, backgrounds.

A shift in approach to recruitment has been embraced by some very large companies.

"Paths into cybersecurity can vary hugely," says Wil Rockall, UK lead on cyber talent at Deloitte, a global professional services company.

"Some people have a technical education, degree courses and [training] programmes in cybersecurity, but the majority of our hires come from non-technical backgrounds," he says. "We focus on talent development. We have a path within the firm around how we can develop a person's soft skills and technical skills, as a person goes through their career."

He adds: "It's a broad industry. Security encompasses a whole number of different things so there's lots of different industries where people have transferrable skills."

Mr Rockall says the sector has changed a lot in the last two decades. "It's not about guys in hoodies tapping away on keyboards doing technical things. It's a business function so you need people with business skills."

Some common career paths from other industries in to the sector include people who have previously worked in penetration testing (ethical hacking); or as a compliance analyst; security consultant; security operations or threat intelligence analyst.

"These paths range in core competencies. From very technical roles that are a natural fit for someone with an engineering background, to roles that are more process, data and analytics oriented," explains Melanie Kruger, vice president of talent at Red Canary, a cloud-based security services provider.

"When considering which path is right for you," she says, "I would advise creating an inventory of the skills you are most energised using in your current role."

While the cybersecurity labour shortage isn't going to disappear any time soon, experts agree that broadening the candidate pool will be crucial in addressing the shortage.

"What that means now is pulling people out of adjacent disciplines and retraining them, or helping colleges improve their training so there's a better pipeline," explained Paul Farnsworth, Chief Technology Officer at the DHI Group, parent of the Dice high-tech job website.

Companies are retraining staff from other areas to go into cybersecurity says Paul Farnsworth

Jim Johnson, a senior vice president in the technology division of Robert Half, a national professional staffing firm, adds that businesses need to be more proactive in expanding their talent pool.

"Companies need to be engaged in their communities, with their local schools and networking groups and support them and help drive that audience, and help create the talent pool," he says.

"Part of that is offering internships or real world experience for students. It's going to help students ramp up much more quickly."

Heather Ricciuto, academic and talent outreach lead at IBM Security, says several years ago IBM came to the realisation that it could no longer keep looking for staff in the same old places.

IBM had to look in new places for cybersecurity staff says Heather Ricciuto

"We couldn't keep trying to hire folks with bachelors and masters degrees from top-tier universities. We recognised we had to start looking at the non-traditional talent pool," she says.

"We've been hiring people with college certificates, associate degrees, boot camp graduates, free online training, self-learning. And people who come in through apprenticeship programmes.

"There are so many unfilled cybersecurity jobs around the world, we couldn't possibly fill them all with university graduates. There just isn't enough people graduating with the right skills to fill all the open positions."

Diversity will also play an important role in expanding the pool much further and bridging the skills gap.

"Diversity is massively important," says Mr Rockall. "We're not solving a single problem that has a single answer."

"We work in dynamically evolving environment where attackers are trying to find diverse ways of disrupting our clients," he says. "So it's really important that we have a diversity of thought and a diversity of approach to think of new ways of combatting that."

AI Disclaimer: An advanced artificial intelligence (AI) system generated the content of this page on its own. This innovative technology conducts extensive research from a variety of reliable sources, performs rigorous fact-checking and verification, cleans up and balances biased or manipulated content, and presents a minimal factual summary that is just enough yet essential for you to function as an informed and educated citizen. Please keep in mind, however, that this system is an evolving technology, and as a result, the article may contain accidental inaccuracies or errors. We urge you to help us improve our site by reporting any inaccuracies you find using the "Contact Us" link at the bottom of this page. Your helpful feedback helps us improve our system and deliver more precise content. When you find an article of interest here, please look for the full and extensive coverage of this topic in traditional news sources, as they are written by professional journalists that we try to support, not replace. We appreciate your understanding and assistance.
Newsletter

Related Articles

0:00
0:00
Close
Vatican hosts first Catholic LGBTQ pilgrimage
Apple Unveils iPhone 17 Series, iPhone Air, Apple Watch 11 and More at 'Awe Dropping' Event
France joins Eurozone’s ‘periphery’ as turmoil deepens, say investors
France Faces New Political Crisis, again, as Prime Minister Bayrou Pushed Out
Nayib Bukele Points Out Belgian Hypocrisy as Brussels Considers Sending Army into the Streets
France, at an Impasse, Heads Toward Another Government Collapse
The Country That Got Too Rich? Public Spending Dominates Norway Election
EU Proposes Phasing Out Russian Oil and Gas by End of 2027 to End Energy Dependence
More Than 150,000 Followers for a Fictional Character: The New Influencers Are AI Creations
EU Prepares for War
Trump Threatens Retaliatory Tariffs After EU Imposes €2.95 Billion Fine on Google
Tesla Board Proposes Unprecedented One-Trillion-Dollar Performance Package for Elon Musk
Gold Could Reach Nearly $5,000 if Fed Independence Is Undermined, Goldman Sachs Warns
Uruguay, Colombia and Paraguay Secure Places at 2026 World Cup
Trump Administration Advances Plans to Rebrand Pentagon as Department of War Instead of the Fake Term Department of Defense
Big Tech Executives Laud Trump at White House Dinner, Unveil Massive U.S. Investments
Tether Expands into Gold Sector with Profit-Driven Diversification
‘Looks Like a Wig’: Online Users Express Concern Over Kate Middleton
Florida’s Vaccine Revolution: DeSantis Declares War on Mandates
Trump’s New War – and the ‘Drug Tyrant’ Fearing Invasion: ‘1,200 Missiles Aimed at Us’
"The Situation Has Never Been This Bad": The Fall of PepsiCo
At the Parade in China: Laser Weapons, 'Eagle Strike,' and a Missile Capable of 'Striking Anywhere in the World'
The Fashion Designer Who Became an Italian Symbol: Giorgio Armani Has Died at 91
Putin Celebrates ‘Unprecedentedly High’ Ties with China as Gazprom Seals Power of Siberia-2 Deal
China Unveils New Weapons in Grand Military Parade as Xi Hosts Putin and Kim
Rapper Cardi B Cleared of Liability in Los Angeles Civil Assault Trial
Google Avoids Break-Up in U.S. Antitrust Case as Stocks Rise
Couple celebrates 80th wedding anniversary at assisted living facility in Lancaster
Information Warfare in the Age of AI: How Language Models Become Targets and Tools
The White House on LinkedIn Has Changed Their Profile Picture to Donald Trump
"Insulted the Prophet Muhammad": Woman Burned Alive by Angry Mob in Niger State, Nigeria
Trump Responds to Death Rumors – Announces 'Missile City'
Druzhba Pipeline Incident Sparks Geopolitical Tensions
Cost of Opposition Leader Péter Magyar's Economic Plan Revealed
Germany in Turmoil: Ukrainian Teenage Girl Pushed to Death by Illegal Iraqi Migrant
United Krack down on human rights: Graham Linehan Arrested at Heathrow Over Three X Posts, Hospitalised, Released on Bail with Posting Ban
Asian and Middle Eastern Investors Avoid US Markets
Ray Dalio Warns of US Shift to Autocracy
Eurozone Inflation Rises to 2.1% in August
Russia and China Sign New Gas Pipeline Deal
Von der Leyen's Plane Hit by Suspected Russian GPS Interference in an Incident Believed to Be Caused by Russia or by Pro-Peace or by Anti-Corruption European Activists
China's Robotics Industry Fuels Export Surge
Suntory Chairman Resigns After Police Probe
Gold Price Hits New All-Time Record
UK Fintechs Explore Buying US Banks
Greece Suspends 5% of Schools as Birth Rate Drops
Apollo to Launch $5 Billion Sports Investment Vehicle
Bolsonaro Trial Nears Close Amid US-Brazil Tension
European Banks Push for Lower Cross-Border Barriers
Poland's Offshore Wind Sector Attracts Investors
×