Breaking into the cybersecurity field can fell overwhelming, especially if you don't see an abundance of opportunities right away. My journey into cybersecurity wasn't a straight path, but through persistence, learning, and taking advantage of small opportunities, I was able to build a strong foundation for my career. In this post,  I'll share my personal experience, the challenges I faced, and my advice for those looking to enter the field.

Challenges in Transitioning to Cybersecurity

One of the biggest hurdles I faced was the lack of a wide selection of opportunities. Many cybersecurity roles require prior experience, and breaking in can feel like a catch-22. Instead of waiting for the perfect role, I took small opportunities where I could learn, grow, and prove my abilities.

A key lesson I learned is that you must be willing to step out of your comfort zone. Taking on smaller roles and excelling in them will naturally lead to bigger opportunities. If you demonstrate your skills, reliability, and eagerness to learn, doors will open for you.

Defining Moments in My Cybersecurity Journey

One of the pivotal moments in my cybersecurity journey was when a company I worked for was purchasing an Extended Detection and Response (XDR) solution for the first time. I took the initiative to be a key member of the procurement process. This hands-on experience allowed me to learn the platform from it's initial implementation to its full production use.

This opportunity was instrumental in my growth. It taught me about vendor selection, configuration, deployment, and monitoring of a cybersecurity tool in a real-world environment. More importantly, it reinforced the importance of stepping up when new initiatives arise, even if they seem outside your immediate job scope.

Another defining moment was making the difficult decision to resign from a position I loved as a Systems Engineer because I was not being vetted for a more mature role in cybersecurity. Instead of waiting for an opportunity that wasn't materializing, I took control of my career path and created my own company. JAH Cybersecurity Consulting. Ironically, I later secured a contract with that same employer to assist with their cybersecurity efforts and improve their security footprint. This experience reinforced the power of betting on yourself and creating opportunities where none seem to exist.

Skills to Develop for a Successful Transition

If you're looking to transition into cybersecurity, here are some key skills to develop: Networking and security fundamentals are essential to understanding how networks operate and the core principles of cybersecurity. Hands-on experience with security tools such as SIEMs, firewalls, and endpoint detection tools will give you practical knowledge. With many companies moving to the cloud, learning cloud security, especially AWS, Azure, or Google Cloud, can be incredibly valuable. Threat analysis and incident response skills will help you investigate and mitigate security threats. Additionally, having a basic understanding of scripting and automation using python, Powershell, or Bash can be beneficial for automating security tasks.

Certifications to Consider

• CompTIA Security+ - A strong starting point for foundational security knowledge
• Certified Ethical Hacker (CEH) - Focuses on penetration testing and ethical hacking skills.
• GIAC Security Essentials (GSEC) - Covers broad cybersecurity topics.
• AWS Certified Security Speciality - Ideal if you're interested in cloud security.

Advice for Newcomers

If you're transitioning into cybersecurity, take small opportunities even if a role isn't your dream job. It can serve as a stepping stone to greater things. Networking and building relationships are crucial; engage with professionals in the industry through LinkedIn, conferences, and local cybersecurity groups. Stay curious and keep learning, as cybersecurity is always evolving, and continuous education is key. Working on personal projects, such as setting up a home lab, participating in Capture The Flag (CTF) competitions, or contributing to open-source security projects, can help you build hands-on experience. 

Transitioning into cybersecurity is a journey that requires patience, persistence, and willingness to step up when opportunities arise. My experience with XDR procurement and implementation was just one example of how taking initiative can lead to career growth. Additionally, making the bold decision to leave a comfortable position and build my own cybersecurity consulting business opened doors I never expected.

If you're just starting, focus on developing skills, gaining experience wherever possible, and always being ready to learn. Cybersecurity is exciting and rewarding field, stay committed, and the right opportunities will come your way!

Written by Jade Hutchinson, founder of JAH Cybersecurity Consulting, specializing in helping businesses strengthen their digital defenses.