I have been in IT for a long time. I have been responsible for CyberSecurity in many forms during that time. I have watched the security field change and grow. I have helped create and taught the CyberSecurity curriculum for two Universities and multiple other programs. I have mentored hundreds of people into the field. I hear the complaints and frustrations of new people getting into the field.
Here is what you are not going to like:
THERE IS NO SUCH THING AS AN ENTRY LEVEL POSITION IN CYBERSECURITY!
Why do I say that? Because security is a specialty. Think of something like brain surgery. One cannot get an undergraduate in Brain Surgery. You need all the doctor knowledge and skills before you can learn details about the brain and about surgery. With security, in order to be good, you need a strong background in systems and networking or coding. If you don’t have that real hands-on experience with one or the other, how can you layer security on top that is totally dependent on a deep understanding of one or both of those?
Then comes the real kicker. I don’t care what industry you are in. It could be tech, plumbing, HVAC, nursing, etc. Taking the theoretical that you learn in a class or book or wherever and applying it to the real life takes 2-3 years for that next jump to really start to understand your craft. In hiring and managing lots of people over the years, that first couple of years changes you. Once you put in that time, your value goes up tremendously. You cannot expect to be paid day 1 after going through some boot camp or other program. What you need is for someone willing to take a chance on you for that first job. You have to be willing to do that at a lower salary and whatever it takes to get the foot in the door knowing that it is an investment, and you are playing the long game.
So, let me know… Do you agree or disagree? Tell me why….
