The I.T as a whole industry is effected by burn out because of the constant up keep in skillsets and technology changes. Doesn't mater if you are a Software Engineers, DevOps Engineers, Sysadmin, Network Engineer... This is expected in this kind of field.
and with the AI craze and layoffs, that's getting more and more agressive. It's expected that you sacrifice your other interests and hobbies so your job can be not just your job, but your life style. There's always a sense of "i'm not doing enough, not studying enough" and this can be very draining. I'm happy that i'm learning to cope with it.
I think the deep knowledge, the stuff that's never going to go away is the most important thing. The experienced pros know, that what's new today is forgotten tomorrow@@Guilhermeabcd
@saby7825 I'm the same. A few times I was seriously planning to switch career and become a builder to bring more meaning to my life I guess. Once I realised, being in IT for the past 15 years, is that anything you created can be erased in a matter of a split second.
Decided to go back to school for cyber security thinking i would land an entry level job. I passed all of my classes with A's but couldn't get an interview. Was never told to try and get a job in the field while in school. I ended up getting a job in supply chain logistics and killing it because of my experience in SQL. I don't regret going learning and it kind of helped me get into what I'm doing now.
@@Hvleosapplied for like 6 months with some decent interviews but as the video pointed out they want someone with work experience, home lab, etc. I’m just thinking to myself why do I need all that when I can learn anything about a basic tech support job in a few weeks or a month while doing the job. Like I got MIS degree and Cybersecurity Management cert from university and that’s not enough apparently. Currently not applying because of life situation and need stability with my current unrelated to IT job. But just wondering what do I want to do, and what do I really want to learn on my own and hopefully find a job in that sector.
Grant has done a great job of giving a fat reality check in the field of Cyber. This is a complicated field, only for those truly passionate and dedicated enough to fulfill the missing skill/talent/experience that's needed.
I appreciate the words here @jeremiahbray2952 - sometimes I think the videos can come off as a bit negative and perhaps a bit "gatekeepy", trying to discourage new applicants. My intention is not to do either of these. For me, I had these expectations as a university student and I thought this industry was going to be a bit different. Maybe some will benefit from this perspective.
I have been in cyber for a decade, and IT for 15 before that, and EE design engineer before that, IF YOU DONT WANT TO KEEP LEARNING YOUR ENTIRE CAREER walk away now.. YOU have to learn and adapt every single day or you are not of value to me or my team or any company!!!
yeah this is very gatekeepy indeed. precisely why i hate most folks in my field. i have a masters in cybersecurity and most people in this field absolutely like to pretend there is an ancient secret. it is really no different from any other field, and there are so many subsections to get into. whether you want the nerdy stuff with pentesting or being an analyst, or just being higher level management or GRC. you can follow one of the widely accepted certificates and be competent fairly quickly. jeremiah... let's be honest.... you just want to pat yourself on the back here. stop gatekeeping cybersecurity! god imagine how hard it is for a woman or a person who didn't have all the opportunities in life to get started in this field with people like you. here's a reality check... you are the true reason DEI is needed :)
Thanks for being honest with the people. There are a ton of people out there selling something giving people the idea that they can easily get into security. I have 25 years of experience in the industry and it pains me to see some of the ways beginners are being misled.
- "There are a ton of people out there selling something giving people the idea that they can easily get into security." I agree! There are a lot of influencers and training programs selling the dream with very expensive courses and training. I would be a hypocrite if I didn't disclose I have a small, affordable course out there myself. But I have always tried to be realistic. There's so much to this industry that I didn't realize. And I have a lot more yet to learn. It's not a one-size fit-all solution. Everyone's situation is different. I was misled. Especially about the training and industry expectations.
Would you hire someone who had 12 years experience but took a 12 year break from working & now wants to get back into IT but kept up their certs relevant? PMP, CISSP, A+,N+, S+, ITIL, etc...
This is correct , the daily work is mostly of triaging the incidents, closing the tickets on soar , reviewing dashboards, giving shift handovers. The burnout is real when you are the only one to tackle the red team incidents , learning new skill sets but I believe this is what we do as in Cybersecurity. We are on a thrill of not getting the company compromised. Learning new ways to defend and harden the security posture. Huge Respect to our community and I am proud to be in it.
It isn't really about skill or degree it about who you know" facts right there another tech youtuber had said the same connections do matter in this industry.
I'm learning Linux with the expectation of getting into cybersecurity, and your videos have given me so much. I appreciate that you make these honest takes and share them for free for all of us curious souls
the reality is that breaking into any major industry is tough. most people are sold on this idea that just getting a degree alone or some certs means you get the job and it's all sunshine and rainbows. it's a lot of work but nothing that should turn you away if you have a passion for this side of the teach industry.
Not exclusively in cyber security but the IT burn out is real. Been in it 8 years and I'm starting to wish I was cutting lawns for a living. At least I'd be outside lol.
Been in IT (mostly security) since 2011 and spend most of my life fantasising about doing pretty well anything else. I'm so done with this, but I'm pigeonholed, so burned out I have no drive to change, and have no idea what I'd rather be doing. A classic rut.
@@dmitryi3761 lollllllll dont do it, same shit on this side. leaving blue collar to try IT, even if its still garbage at least my body wont be destroyed when im old.
I’ve just started working in cyber a few months now, and I can already agree with the points that you bring up in this video, but I wouldn’t want it any other way. Great video Grant!
Hey man, im a canadian highschool wanting to get into cybersecurity or even just IT in general, i have a bit of experience with burp and putty and I honestly just wanted to hear what you would tell a highschool student wanting to get into cybersecurity
@@Cameupoffa2 Hello there, I know that your reply might not be directed to me, but I will tell you my experience... First of all I still haven't landed any job in Cybersecurity, but have always wanted to and here are some mistakes or rather some stuff that I missed since I started from the beginning... 1. I should have been more creative, not just follow what "that CTF room" is guiding me through. 2. Search for some team so we can share some ideas (you might find some people from school/university), maybe then you can have some amazing team-projects. 3. Getting at least one certificate in that field so it can help you out (WHILE) doing the stuff mentioned in 1 and 2, cause otherwise you'll end up either full of "forgettable info" or "feeling like wasting time" cause you might know that already... 4. and the last, just focus on what you're goal is, like there you can be a hacker, researcher, analyst, pen-tester, whatever, blue team, red team, yeah... if you want them all you get none of em... Final note (Do not take it as YOU SHOULD but just get the general idea): I'm currently working as a technical support specialist at an ISP...and like yk, that's unrelated, and gave me a good kick start in terms of work, so I'm constantly warning them about vulnerabilities here and there while getting in that field more (by doing some more rooms on HTB and I'm also a home-lab I am making "so simple"), also there are a lot of unexpected stuff to happen, like literally work life is very different, you also wont go to a random company and say "Hey!, I'll hack/protect/discover you, whatever", there are real world scenarios, just know that... Wish you all the best, good luck.
Sometimes i feel the hardest part of the security side of IT is not, knowing what the attacks are, how to defend against them, or even how to perform them. The hardest part is just convincing the companies and their users to go along with solutions and pay for them when necessary. You have to be more of a salesman than an IT professional. Especially because if there is a major security incident, even if you offered a solution that was rejected that would have prevented it, you're still going to be blamed for it.
Let me start by thanking you for putting together a video such as this stating the nature of such things. I completely agree with you when you stated that if you are not learning something new every day, you feel as if you are going to get left behind or you feel inadequate. That is something that I feel as well when I wake up every day and I go to work. Its a personal struggle for sure for many people not just those in Tech. The Cybersecurity world has a lot of glamour to it and a bit of a romantic side even but the true nature is that it has a lot of information and a lot of constant work need in order to stay one, two, all the steps ahead of an attacker. Thank you for creating this and sharing this with the the ones who truly need to hear/watch it.
"The Cybersecurity world has a lot of glamour to it and a bit of a romantic side even but the true nature is that it has a lot of information and a lot of constant work need in order to stay one, two, all the steps ahead of an attacker" Very well said! I agree. Happy to share.
I'm in industry for over two years as Incident Responder and I agree with most things you mentioned. Getting into this field and maintaining high level of engagement requires dedication. Navigating through different expectations (self included) is challenging and can lead to burnout periods without focus on sustainability. All my cyber people, be brave, choose conscious and be kind to yourself !
At what point of being an incident responder would you say you hit the "Okay, this is boring now. I have stopped learning, NEXT" is it kind of like helpdesk/desktop where at some point it's just routine?
@@AnthonyGee-pn5wf its individual but I think when you feel that your current position became just routine and there's nothing you want to explore its time to consider changes. On other hand when you constantly evolve with knowledge and skills you at some point growing out of position naturally and its time for new challenges. I heard great thinking about learning - its normal feeling to be flustrated - learning is flustration. IT helped me overcome procrastination.
Still in my first year as a cyber security analyst and it's been non stop learning. Previously, a L2 support for 4 years, but this one year alone has shown me how little I really know. That said, it's a rewarding role since you're constantly learning day in, day out.
Getting my associates degree next semester and I’ve come to realize that there is still tons of information that I have yet to learn. I’ve also had no luck finding a internship or job in any IT related role. Although this sort of makes me want to just give up I’m going to keep on learning new material and implementing it any chance I get. Your videos are very influential and realistic compared to other channels big s/o to you for keeping it real!!
Im here with you man. I'm trying to refresh my knowledge in Python, learn Linux (started using it as my main system) and trying to set up a homelab server to tinker around with network configurations to learn about security. It scares me to think that I won't be able to get into the field when I graduate, but I'm also excited to keep pushing to make myself worthy of entering the field. We're all gonna make it boys
Damn you're lucky as you are already got your associate degrees, imagine someone who wants to be a cyper security specialist from scratch and thinking it's easy field, that person is me😂😂😂
I'm a Cyber Threat Analyst for a MSSP and I thoroughly enjoy it. Surprisingly, it's not the actual job that I enjoy the most it's the environment that I work in. I've been able to reach out to cross team members and have them train me on certain things and be apart of different projects to upskill. Looking at logs all day has gotten pretty mundane and I'm searching for more of a challenge.
@sunset6958 I'm not quite sure of the age range but if I'd take a guess based on their voices, I'd say it ranges. There are only 3 black people in the SOC and everyone else is white. Everyone is pretty helpful though, I have 0 complaints. I've probably learned the most from the white guys that were younger than me.
I agree with your take on it. Realistic expectations are important. I've had several people ask me how to get into the space from unrelated careers and I'm self taught on everything with over a decade of professional IT experience alone and 25+ years as a passionate hobbyist tech nerd, so I have no idea how to even answer that, other than to tell them to focus on building their skill set - it's all employers care about, including me when I'm scouting for new team members. To understand security, you have to first understand how everything works before you can understand how to secure it - it's the first thing everyone should learn but the last thing to be capable of fully understanding. It's not something anyone can easily just jump into - you level up your skills over time and expect to start small, especially if you're not technically inclined and have no experience - no one's gonna pay you 80k a year if you've been working at Kohl's the past decade unless you can show you have the skills to be worth that much. Can you do the job or not? - is all that matters to employers. But once you have the skills and are armed with knowledge, you can go anywhere, certs or no certs, and just be like "K. Ask me shit doe." Answer their questions and they're gonna want you like the hot girl at the dance
Hi there. What are the ways in which a university student accumulate experience during their studies? Please do give your suggestions. Thank you, Have a nice day!
@@dreamhazer342honestly, one of the best things you can do is start deploying Windows and Linux servers at home. You'll learn a ton about infrastructure, client/server communication, how network traffic communicates, different quirks and issues you run into, etc. Ideally you have a next gen firewall and managed switch so you can mess with VLANs (Unifi Dream Machine Pro world probably be the easiest all in one route so you don't have to piecemeal different network devices) and creating intelligent firewall allow/deny rules. Also get familiar with Hyper-V and VMware ESXi virtualization, how to back them up and restore them, and I'd get familiar with Docker as well. Maybe set up an NGINX proxy as well with certs too. Maybe also set up your own WireGuard VPN and secure it so you can securely connect when you're away from home - good for learning the difference between UDP/TCP imo. The enterprise space generally functions the same, just sometimes using different solutions than stuff you'd run at home, but the skills easily translate and employers love that, it shows you're passionate about learning. From a strictly cybersec perspective, get familiar with EDR (and understand how it differs from AV), SIEM, SOC, SOAR, vulnerability scanning, patching for CVEs, possibly pentesting or at least an understanding of it, etc. One UA-cam channel I'd recommend is NetworkChuck - I don't always agree with his approaches but he's almost always on point.
I just landed an analyst position with a market leader and I think it was more timing than anything that landed me the role. There's literally hundreds of jobs advertised, but they all require years of experience, so as a student without professional experience you are going to be fighting to get your foot on the ladder. That being said, it's not impossible, just keep working towards it and take any IT job to get your experience started.
My experience from working on and off in it support for 3 years is that i got burned out from it. It sucks to lose your passion for something. A part of me wants to stay in it, but another part of me wants to do something else. It's frustrating being stuck like this.
Love the take, but as someone who was born in a poor community trying to get into cybersecurity I can never be burn out of it just because the financial gain of it. Its my motivating factor for me to get more certs, more networking with people, going to tech conferences, learning something etc. Idk who can relate but thats my take on being burnt out.
I completely agree. I'm a 36 year old truck driver and going to community college at night. I don't think burnout is something I have to worry about. I'm trying to get my foot in the door any way possible. I don't mind doing anything in the IT world.
Maan, you are spot on what I am feeling. This is reality. I have been working as a non-experienced cybersecurity analyst and all 3 point are exactly what I have been realizing, it is a lovely career but you can not stop learning, there is just so much to learn.
It is a very interesting industry and the advice I'd give to newcomers would be: 1. Make sure you are having fun (it's a fun job after all) 2. Stay hungry 3. Be curious about everything 4. Work on your work life balance and stress management 5. Knowing when and how to take a break 6. Find friends, colleagues who are passionate about this field. Work on things together, discuss the topic together. You'll grow together Good luck
Thank you for that perspective and advice, I will keep this in a note for myself and act towards living through these steps. Intuitively, I feel that these few points are absolutely key to finding satisfaction in IT and pretty much any job title or industry.
Tbh, if you want to get into cyber the easy way just join the military. Serve a few years in a cyber MOS/rate( most of which provide a pretty comfortable living- you should focus predominately on the Air Force/Space Force), soak up all free training courses/certs that are available, get a TS/SCI with a polygraph, and actually walk out with a 6 figure job lined up for a defense contactor or even a government agency. I have done this myself and know a ton of people that have followed the same route. Its much easier than trying to break into cyber with as a civilian with zero experience.
Before watching this video i was thinking about paving the same route you took for myself ... im in the process of getting my comptia A+ cert ; up until i get security + before i join . Im kinda afraid that ill score low on my asvab and that wont even be a job opportunity for me . Just a little fear i have .
hey man im a highschool junior getting my certs in both net+ and sec+, probably getting my a+ as well and really wanna do cyber as a career path. Im really thinking about joining the air force in a cybersecurity field while going to college in hopes of getting a security clearance.. do u have any advice for me? like should i stick with my plan or should i not dedicate those years to the military and instead focus specifically on other paths. I'm not necessarily lost with what I wanna do, but would like help from people with experience
Took me 2 years on the dot to land a job in Cybersecurity from scratch. I agree that recruiters are looking for more than technical ability. Also great point on the culture and awareness piece. Your videos helped me a lot - thank you.
I think to cure of the negative aspect of cybersecurity, the best way is to work remotly while travelling with a disciplined time management, or just freelancing , this is how I reduce stress and burnout , the whole thing is about companies.
You post and I drop everything almost immediately to hear what you have to say. lol. Going into year 3 myself and I feel burnout often. I do security, privacy, AND compliance on my team and they all take different approaches. I have to know some of everything from securing infrastructure to knowing different laws and even project management and auditing. I run off the clock at 5 and don’t look back.
The silver lining about those entry-level jobs vs the higher paid positions is that once you finally break in, you begin to understand exactly how you can grow into those higher up positions. I'll be hitting that 1 year milestone this year and I feel like I'm basically in the same spot as you. On top of the alert fatigue, I've noticed that sometimes I'm the only one taking a critical approach to our processes. Which is good for me, but it kind of puts me in a lose-lose situation because if I identify a new issue, guess who gets assigned all the work to fix it? 🙃
What job titles should I be looking at for that first entry-level position to grow from? I did the whole ITF+, A+, Network+ and Security+ certifications thing, since my BA wasn’t in the tech field, so I know whether things are more vegetable or mineral, but I’m not sure where to go from here.
@@Sonicstillpoint83 Pretty standard answer here but I'd say go all in trying to get a SOC Analyst position. Chances might be better at a MSSP, bonus points if they provide other IT services or if they work with government clients. Those are the conditions that helped me land my job - a separate IT team means the SOC Analyst role is more focused where a beginner can succeed, and if they have an open position you know they want the role filled ASAP for clients. That's the ideal way especially because your certs are a good fit in that scenario, but apply to any SOC Analyst position. It feels much better to explore more preferable job titles once you've broken into the industry.
I would like to echo @sonicstillpoint83 's question - what was the title of your entry level position? Did you go to school for this field or did you make a change from a different industry?
Great video. For me as a person who is working at non-skilled job and learning some python programming for data science and data analysis at online university courses. I already know a lot about the tough realty that I live in. Companies are hiring people with recent experience.
I liked the way you talked about this with honest and no fake expectations as the other people tray to depict this industry. I have always liked to get into the cyber security industry and am still facing a lot of challenges and also realized that this job is not smooth and quick money machine but I like it and I feel that it's the only one that makes me happy when am learning it. And it's not gonna be a paradise in all corners somethings will exhaust you, other things will make you happy in this industry and that the way of live.
You hit the nail on the head. I entered Information Technology 17 years ago after graduating & had aspirations of repairing computers, maybe opening up my own “repair shop.” Obviously the whole industry has flipped - the demand for networking/server/cyber skills started to mount, so I followed the direction the industry was going. I find myself now in a very similar place, being a “security” professional, but feeling overwhelmed with having to catch up with certs, organizational demands & stresses attributed to the industry. Doesn’t mean all days are bad, but it’s not the same career I went to school for years ago! So much has changed! Anyway, thanks for your thoughts. Appreciate the video.
Currently in my last semester of undergrad studying cybersecurity and I'm realizing that I really should've taken the time through my studies to maintain my technical skills. I've got Sec+ and currently "backtracking" to Net+ to get a decent refresher on networking. I'd say my biggest regret was not trying to get experience while in school but I'm optimistic about the getting into the field end goal rn is pivoting into cloud security.
There are not unfilled jobs in cybersecurity. Maybe there should be to protect our data but there is no money for it. Security is always considered optional and is the first thing to be cut.
I started my first job in cybersecurity a little over a year ago, after about 3 1/2 years in support and I have to admit that I got a little burned out after about 6 months. Mainly, I think I went a little "too hard" my first several months and was literally doing nothing but "cybsersecurity related" activities (finishing school, HTB, reading, podcasts, other things). I definitely found that you need a balance like any other job and it's okay to not further your knowledge every second you're not working. After I found a balance, I've definitely been more at ease and enjoy the space more.
I can understand the frustration of constantly having to learn but trust me on this side there are jobs where nothing changes, you don't learn anything, and at the end of the day you have nothing to show for it. That's why I'm getting into tech 😅
I've been a firefighter for 7 years now and I wish I knew how much I would be struggling financially before I jumped into this career. Don't get me wrong, I love my job and no matter what I decide to do this will forever be the best job I'll ever have. Unfortunately, it doesn't pay well. I've been thinking about getting into cyber security and it stresses me out thinking I might not be able to land a job for a couple of years after I have all my certifications and entry level jobs such as front desk might not pay well either.
cybersecurity is a lifestyle. It's not for everyone. If you are not 100% serious with it: breath it, drink it, eat it; then it may be a little tedious for you.
It's one of those careers that WILL consume your life. I know guys in cybersec who've become shut-ins. They're making good money but have absolutely ZERO social life.
I don't agree with the career that consumes your life. I know many people who are pretty social and cool who are long time professionals in cybersecurity @@gotthecutenessoverload1086
Love that quote "more of a talent and experience gap". Interesting you are seeing the politics side of cybersecurity after year 2. Its 100% a company culture issue. Not every company is all in with their cybersecurity program. The most valuable skill you can grow (over any technical skill) is to learn how to "sell" the needs of the Cybersecurity program BEFORE a breach.
Completely agree with your comments about an organization's culture and people impacting how security happens at a company, and wanted to add that I think there's a gap between "skills that people think are needed" and "skills that are needed." My first role in security came after 14 years of working in other industries and slowly floating in the security direction. My current role is 80% non-technical and I feel an enormous pressure to upskill and am doing so, but also find that I'm able to make big impacts by more general business/communication skills, like running productive meetings, following up on emails that I haven't gotten a response to, and remembering that last time I talked to X person, their pet was at the vet, so asking about that. I, too, am coming up on over two years in my first security role and am trying to build longevity in the industry. Figuring out what to learn and do next is tough - there's SO much! Thank you for posting and sharing your thoughts. Good luck to you!
This applies to many IT positions, or even many skilled, non sales positions. Definitely how hard it is to break in, but also the hurdles to accomplish anything as a junior associate.
To help with overload/learning is to do it at work if possible and once you're off....DONT THINK ABOUT IT. Sure I'll read an article here and there but being able to close my laptop and go on with my day/life is great and needed to be fresh.
#3 is common for IT in general. At one of my job, alot of people were new to IT (1-3 years) and I can tell they were suffering from burnout. Once you hit the 5 year mark in IT you are a lifer and that's really when you can get the high paying jobs
Those cybersecurity carreer videos lead me to reevaluate and rethink some important stuff i need to come to terms with since my last burn out in the industry. I'm writing a journal about it, and i find your content inspirational. Thanks for the upload!
I've been doing some writing too, if I decide to stick with IT, I may shoot for sysadmin work instead of cybersecurity. I am a hands on guy and like the hardware side more than the software side of computing.
@@saby7825 in my case i think i need to leave threat intelligence behind and maybe start considering specializing in malware development and other red team related skills. Shoot for a solo carreer or become a professor? It's all confusing now. Well, the best of luck to us!
The issue with Cyber Security, right now, is that it's a very broad niche field (yes, I know that sounds paradoxical). Thus, what recruiters are looking for are very all-round security professionals. People who have an understanding in incident management, in GRC, in project management, in security architecture, in training and awareness, in pentesting... you get the idea.
Decided to change careers late in life …15 years of loss prevention/investigations and now studying for my A+ and Security+. Learning a whole new skill set and looking to break into an entry level IT job. Thanks for an honest video. Lots of these boot camps just make it seem like you’ll have a job lined up after completing it and that probably isn’t the truth always.
I'm in a similar position. Gained A+, studying for sec+. I recommend getting into AWS cloud as well. I have the Practitioner cert and intend to get the Solutions Architect. Not only is AWS a popular cert to have, I find that studying helps to expand one's knowledge of enterprise level IT.
I'm a help desk support specialist. It is a good start to entering the field and rounding out your skills. One may have to start there and then shift to security which I hope to do. There are so many entering the field, just find a way in!
A very honest video. The burnouts are real. The stress and churning out of new stuff every hour is tiresome. Hey, but come to think of it, we soldiers in the cyber space, protecting the vulnerable. It's a price we pay for choosing the cybersec path.
I appreciate the kind words here. My intention is not to come off overly pessimistic about the industry. Hopefully this provides a more transparent / realistic overview. Cybersecurity is still a great industry!
@@collinsinfosec I am about to graduate with a cyber security associates degree and I’m about to take my sec+ and as I look for jobs and talk with my current internship opportunity I find there is a bit of overhyped talk on jobs and pay in the cyber security industry but I’m not allowing it to keep me from perusing it even if I have to work at a entry level for a while
Been trying to break into it for 2 years now. Stuck on Hell Desk, which is also repetitive. I have no illusions about the grass being greener on the other side, but getting a company to take a chance on you so you can at least earn experience in the field to put on a resume is daunting. Not much else can be done about the situation other than continuing to upskill outside of work. Great video btw.
I’m in the same position. The only recommendation I have to is to either get certifications that are recognized by companies or government. Learn coding and start projects on your own. Just grind it out until you get an interview for an entry level. Once you get the foot in the door, do everything to absorb as much information as possible.
@@blackwhitegrey001 good advice but there is no need to “absorb all the info” companies don’t hire ppl to train them be qualified enough to do the job from the start
Im a veteran with no cybersec experience in the military and went back to college for a cybersec degree. Its still disheartening putting in all these applications and getting rejected. Ive often thought of just reenlisting. I hated my life but at least I could afford some more consistent things...
Re-enlist and make sure you have an active security clearance. Then the gravy train flows. Companies that demand a security clearance won't hire anyone without one. You can be a green cybersecurity job prospect, but that security clearance is what they really want.
automatic follow after this video. I am currently half way through my degree and this is the most important thing I have consumed. I appreciate the content
The only solution for burnout is to switch domain, let's say from SOC to detection or threat hunting, and vice versa. All points you made are 100% right.
I realized recently that the entry level or first job difficulties makes a lot of sense actually. Cyber security students understand you need to implement the best security measures possible for a specific system based on constraints like budget etc. But fail to realize that if you had something so valuable it is worth employing and paying people specifically to protect it, would you hire the guy who has been protecting stuff for 10 years and seen it all, or a student/person with a couple of certs who has studied theoretical "book" knowledge and experimented with a couple of projects here and there? I know which I would choose if I wanted my valuables to be safe. Think of the same scenario with physical security like protecting a bank vault or high value prisoner or something if your brain can't make the jump to understanding the cyber analogy.
Just been back to uni at age 35 to do a Masters degree (conversion) in cybersecurity. I got into it because I was told "theres a skills shortage". Every single day I've felt like todays the day I get found out (because I'm an imposter etc and not very good). I got to say, now that I've finished, all I'm hearing is "you know that skill shortage we talked about? Yeah it doesnt exist. Its very competitive". This is exactly the position I did NOT want to find myself in. I already had a useless bachelors degree before this which didnt get me jobs. I think what Im really hearing from within the industry is, as you said, not a shortage of people wanting to do it, but a shortage of people who are GOOD at it. I STILL dont feel good at it even after my imposter-syndrome fuelled masters degree. Now I'm worried to death that it was all a waste of time and a massive con. Also I was keen on the idea of a piece of paper that would get me good jobs pretty much forever, but now all I'm also hearing is "you need certs, then more certs, then renew your first certs, just keep learning" like it's some kind of treadmill that I should never have gotten on in the first place. I gave up a fairly decent job (for my level of academic ability) to go and learn this stuff to change my life. It's starting to feel like it was all a bit of a lie. And I'm not sure how I'm ever going to explain this in job interviews for the rest of my life, which is what I will inevitably have to do if I can't get into something decent cyber-wise.
Thanks for being transparent and authentic. I've been wondering if cybersec was worth it given the mountain of info needed to get into it. This video has convinced me it's not for me. Still subbed though. Cheers!
Yeah that first point I definitely resonate with. Everyone always talks about how cybersec is a booming industry and for me, I'm trying to change careers into cybersec right now I've obtained a bunch of certifications and applied to 40+ job postings and pretty much getting ghosted in all my applications. Most employers don't want you unless you have job experience but the question is....how can people get experience if no one is hiring. Sad times
This IT worker "shortage" is self imposed by employers themselves. They've created a catch-22 condition when they won't hire and train inexperienced workers. They have no right to complain about staff shortages when they don't give newcomers a chance. Companies used to train their workforce and now they just expect experienced workers to grow on trees.
You are doing good work with these vids bringing out the reality of things. I think the industry is getting a reality check for years of unrealistic expectations over the years. You definitely have to have a passion for it too - burnout is so real lol so thanks for bringing that up
I agree with everything you said Especially the skills gap. They key is if your company is not huge with lots f different types of cyber professinoals you have to real continue to learn and study outside of your job laerning new things. If you dont do that you will stagnate and have a hard time moving up. Interviewing alot of candidates for mid to senior positions alot are too tool oriented without fully understanding the fundamentals of logs, what a compromised device would potentially look (lateral movement, exfiltration, kerberos attacks, etc..) If you have a solid understand of those things without using qradar or crowdstrike I think quite a few hiring managers would take anyone for junior- mid positions.
Thanks for sharing, I'm about to start my first job in the industry after a long period of studying and working hard to get into it. Excited to be on the journey
Theres so many youtubers that act like tech is soo cool. But yet after one year theyve quit and theyre trying to make a career of youtube lol. Youre one of the few whos really saying how frustrating it can be
Having 20 years in cybersecurity, I can only say.....companies or customers interest are not focused on solving security issues. They don't care. Now everybody wants to work on cyber security because its demand, but little do they know how complex, demanding, and frustrating it its to work in this industry. Cyber sec is seen as a liability.
@@Jupiterxice Sincerely I work in cybersecurity because I were always curious and started it as a hobby and a I love it. But if you are looking for a rewarding job position.....Cybersecurity is not the place. Nobody will congratulate you for mitigating attacks which nobody will see. So, if you had experience already, maybe time to change strategy. Good luck.
I am someone who fell for all the marketing schemes, took a bootcamp, got some certs, and somehow landed a job. However, I think actually getting an entry level job in this field is based on pure luck and connection. Once you get your foot in the door it becomes much easier to move up in title and/or salary. I will say that when I was in my entry level role the people who completed bootcamps were absolutely on the same, and in some cases higher, knowledge level when it came to cybersecurity concepts when compared to individuals who were self taught or had a bachelors in Computer Science. The people that have a better understanding will move up quickly into those 6-figure roles, but this requires continuous learning.
Have about 23 years in IT, trying to get into Cyber, mostly because i got tired of doing operational work. First and foremost, learn how to build relationships. Segmentation is real and you have to be able to communicate and leverage the relationships you build, as you may not have required access to do a ton of functions a task may require. Learn something you love, master it and dont try to know it all. Be resourceful, god only knows how many articles, how many forums, how many 3rd party support calls Ive had to make. Learn to take breaks when your body is asking you to, you cant enjoy the experience if youre not also enjoying your life.
I am just getting into it and so far I love it. Sometimes it can get overwhelming but I've always loved to learn new things and be that guy that Is always finding a program or a better way to be efficient. I get board i love solve problems. I also quit and all my cards are on the table. I'm hoping once I gain a little bit more experience I hope I can find an entry level job. 😅
Thanks for uploading. I'm switching fields because where I am jobs are pretty poopie for folks in my type of situation. I have a LOT of HR skill and experience but...no one's really looking to hire an old military vet like me, I suppose. Oh well. Crying about it won't fix anything or feed my kids, so I'm switching fields and will handle this, myself. Take care, everyone
I think security fails as a whole because security is rooted in the mindset that once you get in, you're done and no longer need to learn. It's also rooted with the mentality that you're going to be doing crazy things like "hacking." At least that's the way all the other channels convey this field to be. In addition, these gimmicky channels often sell you the idea that cybersecurity is an easy field to get into simply because of the demand that exists. When in reality, it's like you said, there is a lack of talent which is a contributor to the rise in positions available. It's very unfortunate to see how misleading those youtube channels are and truly appreciate how real you keep the information.
Hey Grant! Great video, also loved your last one on IABs. Been subscribed for a while now, we were on similar paths when I found your channel as I went back to college from 2018-2021 and got an IT and Cybersecurity degree. Ended up in a do-it-all type of IT position in local government. This is random af but would you want to start a podcast? I think it would be cool for us to be able to talk about our real world experiences as early career IT professionals that could really help a lot of people exploring or getting into the industry. Could also talk about hot topics in IT and I think we would mesh well together. Either way, keep up the great work man and I continue to follow your journey!
Being a Senior Cyber Security, I can say that it depends on the type of team you are in. There are teams like SecOps where you spend weekends on queue and there are teams that does day to day ticket work involving minimum efforts. Get into the right team depending upon your aspirations. The upskilling part is part of the job as a whole in IT, doesn't matter if its SDE, SRE or Cyber
I’m actually starting a bootcamp thing that’s like 3 months long. You get 5 certifications from it. Doing this while I just make a living from home anyways so i thought why not. There are several different ways you can pay for the training and I chose for it to be deducted from future salary until paid off. They only deduct when you are making a certain amount and you are only required to pay them back if they land you a job which is cool so I said why not. Worst case is I don’t land a job and learn a bunch of stuff for free. Best case I land a job and pay them back, and if they get me a good job I’ll pay them back fast. I mainly want to try it out because I like the field and the remote work.
Zero experience, just started taking classes. I love it. So interesting. I get I am most likely not going to come out making those monetary goals. But I will be looking for internships. I hope this is going to go the way I want it to.
I wish I researched cybersecurity much more thoroughly (youtube & reddit) before enrolling in school. I learned that being "technical" and decent with computers isn't good enough to succeed in cybersecurity or IT in general. Now I'm studying supply chains management and I love it
Great video! thank you for posting it. I wish I've seen it last April when I started to work on my sec+. I worked with DOD overseas. decided to change my career to cybersecurity. I was under the impression of having the sec+ with security clearance along with DOD analyst experience would be enough but it's not! the job market is crazy. I am competing against experienced people with a lot more to offer and it's almost impossible to find a cyber position that doesn't require more than 3-5 years of hands on experience! I am regretting it already. I just couldn't be away from family forever so I was hoping to settle having a M-F job in cybersecurity but I guess I was wrong! tired of applying and not hearing back or being ghosted out by interviewers....
Glad you explained that you cannot simply pass a few exams and expect a top job in cybersecurity. The amount of knowledge required to be effective in a top cybersecurity position is acquired over years of experience (and variety of experience) and there really is no shortcut. Then you raise the important point of the rapidly changing and expanding knowledge required to maintain that 'senior' level. I was a 'senior' cybersecurity person for nearly a third of my 42 year IT career and knew it was time to consider retiring when large enterprises, like the ones I worked for, were migrating their entire networks to the cloud. The vast new oceans of knowledge required to be effective in the 'new environment' convinced me that it was time to pass the torch to a new generation.
I'm just interested in it for my own curiosity. Don't think I will learn enough for a job. Just anything I can gain from watching videos is better then looking at FB reels
I think cyber security is not for everyone, you have to be very passionate about it and highly motivated. Besides, organisations, companies and individuals get it wrong when it comes to cyber security, the way employees are hired, certifications, e.t.c I just think there isn't much of a solution when it comes to cyber security
So true, I have a bachelor's degree in computer network a cybersecurity certification and I definitely thought that I was going to get a job in the IT field easily. I've applied for so many jobs in the reality is without experience is much harder.
As a cybersecurity student myself, I have been told to look for a job in the industry while still in school. I've been following this advice and looking for a job for a few months now. I am having an extremely difficult time. I don't have a degree, I don't have any certs, and I don't have any experience, so I get turned down for even "entry level" positions. It's rough out here.
I'm trying to get into cyber security, but I never had an experiences of basic of I.T since they never had one in the first place. So it's gonna be very hard for me to adapt to certain things since it 's not too friendly for beginners.
@4:03 The true expectation is that you do everything. They need you to do everything, instead of focusing on what you studied for. From what I found is that many companies would rather off-set cost to an outside cyber security vendor with insurance, rather having a cyber security analyst team (some corporations have both). But, as many companies are already suffering to what's happening to them, like Ransomware, they are finding out that it is costing them more, rather than recruiting. But by then, it is already too late. This would be the only time where I would say that government needs to intervene with a heavy hand. These corporations are playing with peoples PII and other sensitive information.
It’s just life , some just get a little lucky and break into some fields because of people they know and develop from there and some have to go in the hard old way by looking good , it’s almost everywhere nowadays
With your resume it also helps to write your years of college as experience. Technically it is, as you've been working on all sorts of projects throughout college. A real job usually focuses on about 10% of that, with most of it dealing with the ticketing software and other software/processes, but sometimes, depending on how your resume is written, it can help out. I got an entry level IT job and whilst it's not the one I wanted, it's far better than a retail job. I also feel that when it comes to organizing life and managing burnout, that the best thing to do is, for me, to set specific general goals. That is, for my training, they want me to get a certification. So I pick three days where I study heavily and 2 days where I study a little lightly. Makes it much easier to manage. But you have to stick to it.
The I.T as a whole industry is effected by burn out because of the constant up keep in skillsets and technology changes. Doesn't mater if you are a Software Engineers, DevOps Engineers, Sysadmin, Network Engineer... This is expected in this kind of field.
Fair points here! I can only speak from a security perspective as this is the industry I am in.
and with the AI craze and layoffs, that's getting more and more agressive. It's expected that you sacrifice your other interests and hobbies so your job can be not just your job, but your life style. There's always a sense of "i'm not doing enough, not studying enough" and this can be very draining. I'm happy that i'm learning to cope with it.
I definitely feel the burn out from it. I lost my passion for it and it sucks.
I think the deep knowledge, the stuff that's never going to go away is the most important thing. The experienced pros know, that what's new today is forgotten tomorrow@@Guilhermeabcd
@saby7825 I'm the same. A few times I was seriously planning to switch career and become a builder to bring more meaning to my life I guess. Once I realised, being in IT for the past 15 years, is that anything you created can be erased in a matter of a split second.
Decided to go back to school for cyber security thinking i would land an entry level job. I passed all of my classes with A's but couldn't get an interview. Was never told to try and get a job in the field while in school. I ended up getting a job in supply chain logistics and killing it because of my experience in SQL. I don't regret going learning and it kind of helped me get into what I'm doing now.
What matters is that you persisted and got a position in a field you are good in!
Im legit in this situation now... applying a mass amount and working on sec+ right now...
@@Hvleosapplied for like 6 months with some decent interviews but as the video pointed out they want someone with work experience, home lab, etc. I’m just thinking to myself why do I need all that when I can learn anything about a basic tech support job in a few weeks or a month while doing the job. Like I got MIS degree and Cybersecurity Management cert from university and that’s not enough apparently. Currently not applying because of life situation and need stability with my current unrelated to IT job. But just wondering what do I want to do, and what do I really want to learn on my own and hopefully find a job in that sector.
Homelabs and personal projects help get that foot in the door.
Hey any update? Heard anything back from any of the employers?
@@Hvleos
Grant has done a great job of giving a fat reality check in the field of Cyber. This is a complicated field, only for those truly passionate and dedicated enough to fulfill the missing skill/talent/experience that's needed.
I appreciate the words here @jeremiahbray2952 - sometimes I think the videos can come off as a bit negative and perhaps a bit "gatekeepy", trying to discourage new applicants. My intention is not to do either of these. For me, I had these expectations as a university student and I thought this industry was going to be a bit different. Maybe some will benefit from this perspective.
I have been in cyber for a decade, and IT for 15 before that, and EE design engineer before that, IF YOU DONT WANT TO KEEP LEARNING YOUR ENTIRE CAREER walk away now.. YOU have to learn and adapt every single day or you are not of value to me or my team or any company!!!
@@Realitygetreal In which IT area you started before moving to cibersecurity?
yeah this is very gatekeepy indeed. precisely why i hate most folks in my field. i have a masters in cybersecurity and most people in this field absolutely like to pretend there is an ancient secret. it is really no different from any other field, and there are so many subsections to get into. whether you want the nerdy stuff with pentesting or being an analyst, or just being higher level management or GRC. you can follow one of the widely accepted certificates and be competent fairly quickly. jeremiah... let's be honest.... you just want to pat yourself on the back here.
stop gatekeeping cybersecurity! god imagine how hard it is for a woman or a person who didn't have all the opportunities in life to get started in this field with people like you. here's a reality check... you are the true reason DEI is needed :)
Thanks for being honest with the people. There are a ton of people out there selling something giving people the idea that they can easily get into security. I have 25 years of experience in the industry and it pains me to see some of the ways beginners are being misled.
- "There are a ton of people out there selling something giving people the idea that they can easily get into security."
I agree!
There are a lot of influencers and training programs selling the dream with very expensive courses and training. I would be a hypocrite if I didn't disclose I have a small, affordable course out there myself. But I have always tried to be realistic.
There's so much to this industry that I didn't realize. And I have a lot more yet to learn. It's not a one-size fit-all solution. Everyone's situation is different. I was misled. Especially about the training and industry expectations.
what would be your recommendation to get in the industry?
@@Keeeeeeeeeeevdon’t get in
@@kjosephflol why
Would you hire someone who had 12 years experience but took a 12 year break from working & now wants to get back into IT but kept up their certs relevant? PMP, CISSP, A+,N+, S+, ITIL, etc...
This is correct , the daily work is mostly of triaging the incidents, closing the tickets on soar , reviewing dashboards, giving shift handovers. The burnout is real when you are the only one to tackle the red team incidents , learning new skill sets but I believe this is what we do as in Cybersecurity. We are on a thrill of not getting the company compromised. Learning new ways to defend and harden the security posture.
Huge Respect to our community and I am proud to be in it.
Glad to hear it and learn the day to day. Your passion is definitely showing.
It isn't really about skill or degree it about who you know" facts right there another tech youtuber had said the same connections do matter in this industry.
Honestly, I paid 2k to get linked up to a good paying job . 😅
I really need a job right now , if I find a good link up , i will pay 😢
For real , it's all about connecti now , the competition in tech jobs now is much , if yu find real source , please share 😢
He's name is CONNECT WITH JEO
He is on l.G
I love your honesty you come across as a genuine person. I love that.
I'm learning Linux with the expectation of getting into cybersecurity, and your videos have given me so much. I appreciate that you make these honest takes and share them for free for all of us curious souls
Ummm.. you should get your CCNA first since security involves firewalls.
@@CasiodorusRexretard
the reality is that breaking into any major industry is tough. most people are sold on this idea that just getting a degree alone or some certs means you get the job and it's all sunshine and rainbows. it's a lot of work but nothing that should turn you away if you have a passion for this side of the teach industry.
Not exclusively in cyber security but the IT burn out is real. Been in it 8 years and I'm starting to wish I was cutting lawns for a living. At least I'd be outside lol.
I've been in IT and cyber for 15 years, and a few times seriously thought about switching to construction since I'm pretty handy. =)
Been in IT (mostly security) since 2011 and spend most of my life fantasising about doing pretty well anything else. I'm so done with this, but I'm pigeonholed, so burned out I have no drive to change, and have no idea what I'd rather be doing.
A classic rut.
@@dmitryi3761 lollllllll dont do it, same shit on this side. leaving blue collar to try IT, even if its still garbage at least my body wont be destroyed when im old.
@@dmitryi3761 damn sitting 15 years in office it self is the real burn out, didn't you invest and try to achieve a financial freedom at any point.
I’ve just started working in cyber a few months now, and I can already agree with the points that you bring up in this video, but I wouldn’t want it any other way. Great video Grant!
Congrats!
Hey man, im a canadian highschool wanting to get into cybersecurity or even just IT in general, i have a bit of experience with burp and putty and I honestly just wanted to hear what you would tell a highschool student wanting to get into cybersecurity
@@Cameupoffa2 Hello there, I know that your reply might not be directed to me, but I will tell you my experience...
First of all I still haven't landed any job in Cybersecurity, but have always wanted to and here are some mistakes or rather some stuff that I missed since I started from the beginning...
1. I should have been more creative, not just follow what "that CTF room" is guiding me through.
2. Search for some team so we can share some ideas (you might find some people from school/university), maybe then you can have some amazing team-projects.
3. Getting at least one certificate in that field so it can help you out (WHILE) doing the stuff mentioned in 1 and 2, cause otherwise you'll end up either full of "forgettable info" or "feeling like wasting time" cause you might know that already...
4. and the last, just focus on what you're goal is, like there you can be a hacker, researcher, analyst, pen-tester, whatever, blue team, red team, yeah... if you want them all you get none of em...
Final note (Do not take it as YOU SHOULD but just get the general idea):
I'm currently working as a technical support specialist at an ISP...and like yk, that's unrelated, and gave me a good kick start in terms of work, so I'm constantly warning them about vulnerabilities here and there while getting in that field more (by doing some more rooms on HTB and I'm also a home-lab I am making "so simple"), also there are a lot of unexpected stuff to happen, like literally work life is very different, you also wont go to a random company and say "Hey!, I'll hack/protect/discover you, whatever", there are real world scenarios, just know that...
Wish you all the best, good luck.
Sometimes i feel the hardest part of the security side of IT is not, knowing what the attacks are, how to defend against them, or even how to perform them. The hardest part is just convincing the companies and their users to go along with solutions and pay for them when necessary. You have to be more of a salesman than an IT professional. Especially because if there is a major security incident, even if you offered a solution that was rejected that would have prevented it, you're still going to be blamed for it.
Are you fr? The disparity of information is that big?
Let me start by thanking you for putting together a video such as this stating the nature of such things. I completely agree with you when you stated that if you are not learning something new every day, you feel as if you are going to get left behind or you feel inadequate. That is something that I feel as well when I wake up every day and I go to work. Its a personal struggle for sure for many people not just those in Tech. The Cybersecurity world has a lot of glamour to it and a bit of a romantic side even but the true nature is that it has a lot of information and a lot of constant work need in order to stay one, two, all the steps ahead of an attacker. Thank you for creating this and sharing this with the the ones who truly need to hear/watch it.
"The Cybersecurity world has a lot of glamour to it and a bit of a romantic side even but the true nature is that it has a lot of information and a lot of constant work need in order to stay one, two, all the steps ahead of an attacker"
Very well said! I agree. Happy to share.
I'm in industry for over two years as Incident Responder and I agree with most things you mentioned. Getting into this field and maintaining high level of engagement requires dedication. Navigating through different expectations (self included) is challenging and can lead to burnout periods without focus on sustainability. All my cyber people, be brave, choose conscious and be kind to yourself !
At what point of being an incident responder would you say you hit the "Okay, this is boring now. I have stopped learning, NEXT" is it kind of like helpdesk/desktop where at some point it's just routine?
@@AnthonyGee-pn5wf its individual but I think when you feel that your current position became just routine and there's nothing you want to explore its time to consider changes. On other hand when you constantly evolve with knowledge and skills you at some point growing out of position naturally and its time for new challenges. I heard great thinking about learning - its normal feeling to be flustrated - learning is flustration. IT helped me overcome procrastination.
what are the fields hiring remote or hybrid. healthcare and government seems to be one that doesn't.
Still in my first year as a cyber security analyst and it's been non stop learning. Previously, a L2 support for 4 years, but this one year alone has shown me how little I really know. That said, it's a rewarding role since you're constantly learning day in, day out.
Getting my associates degree next semester and I’ve come to realize that there is still tons of information that I have yet to learn. I’ve also had no luck finding a internship or job in any IT related role. Although this sort of makes me want to just give up I’m going to keep on learning new material and implementing it any chance I get. Your videos are very influential and realistic compared to other channels big s/o to you for keeping it real!!
Im here with you man. I'm trying to refresh my knowledge in Python, learn Linux (started using it as my main system) and trying to set up a homelab server to tinker around with network configurations to learn about security. It scares me to think that I won't be able to get into the field when I graduate, but I'm also excited to keep pushing to make myself worthy of entering the field. We're all gonna make it boys
Damn you're lucky as you are already got your associate degrees, imagine someone who wants to be a cyper security specialist from scratch and thinking it's easy field, that person is me😂😂😂
I'm a Cyber Threat Analyst for a MSSP and I thoroughly enjoy it. Surprisingly, it's not the actual job that I enjoy the most it's the environment that I work in. I've been able to reach out to cross team members and have them train me on certain things and be apart of different projects to upskill. Looking at logs all day has gotten pretty mundane and I'm searching for more of a challenge.
How are the coworkers in the workplace like e.g age range, ethnicities etc?
@sunset6958 I'm not quite sure of the age range but if I'd take a guess based on their voices, I'd say it ranges. There are only 3 black people in the SOC and everyone else is white. Everyone is pretty helpful though, I have 0 complaints. I've probably learned the most from the white guys that were younger than me.
@sunset6958 Also to mention, I work remotely.
finding work in this space is hard man, would you be kind enough to help a junior out to find work?
@@devviz how would I do that
Cyber is definitely a constantly changing field
I agree with your take on it. Realistic expectations are important.
I've had several people ask me how to get into the space from unrelated careers and I'm self taught on everything with over a decade of professional IT experience alone and 25+ years as a passionate hobbyist tech nerd, so I have no idea how to even answer that, other than to tell them to focus on building their skill set - it's all employers care about, including me when I'm scouting for new team members.
To understand security, you have to first understand how everything works before you can understand how to secure it - it's the first thing everyone should learn but the last thing to be capable of fully understanding. It's not something anyone can easily just jump into - you level up your skills over time and expect to start small, especially if you're not technically inclined and have no experience - no one's gonna pay you 80k a year if you've been working at Kohl's the past decade unless you can show you have the skills to be worth that much.
Can you do the job or not? - is all that matters to employers.
But once you have the skills and are armed with knowledge, you can go anywhere, certs or no certs, and just be like "K. Ask me shit doe." Answer their questions and they're gonna want you like the hot girl at the dance
Hi there. What are the ways in which a university student accumulate experience during their studies? Please do give your suggestions.
Thank you, Have a nice day!
@@dreamhazer342honestly, one of the best things you can do is start deploying Windows and Linux servers at home. You'll learn a ton about infrastructure, client/server communication, how network traffic communicates, different quirks and issues you run into, etc.
Ideally you have a next gen firewall and managed switch so you can mess with VLANs (Unifi Dream Machine Pro world probably be the easiest all in one route so you don't have to piecemeal different network devices) and creating intelligent firewall allow/deny rules. Also get familiar with Hyper-V and VMware ESXi virtualization, how to back them up and restore them, and I'd get familiar with Docker as well. Maybe set up an NGINX proxy as well with certs too. Maybe also set up your own WireGuard VPN and secure it so you can securely connect when you're away from home - good for learning the difference between UDP/TCP imo. The enterprise space generally functions the same, just sometimes using different solutions than stuff you'd run at home, but the skills easily translate and employers love that, it shows you're passionate about learning.
From a strictly cybersec perspective, get familiar with EDR (and understand how it differs from AV), SIEM, SOC, SOAR, vulnerability scanning, patching for CVEs, possibly pentesting or at least an understanding of it, etc.
One UA-cam channel I'd recommend is NetworkChuck - I don't always agree with his approaches but he's almost always on point.
I just landed an analyst position with a market leader and I think it was more timing than anything that landed me the role. There's literally hundreds of jobs advertised, but they all require years of experience, so as a student without professional experience you are going to be fighting to get your foot on the ladder. That being said, it's not impossible, just keep working towards it and take any IT job to get your experience started.
My experience from working on and off in it support for 3 years is that i got burned out from it. It sucks to lose your passion for something. A part of me wants to stay in it, but another part of me wants to do something else. It's frustrating being stuck like this.
Did you figure it out?
Love the take, but as someone who was born in a poor community trying to get into cybersecurity I can never be burn out of it just because the financial gain of it. Its my motivating factor for me to get more certs, more networking with people, going to tech conferences, learning something etc. Idk who can relate but thats my take on being burnt out.
I completely agree. I'm a 36 year old truck driver and going to community college at night. I don't think burnout is something I have to worry about. I'm trying to get my foot in the door any way possible. I don't mind doing anything in the IT world.
Thanks, it probably would be something I’d be willing to risk for the financial side
Maan, you are spot on what I am feeling. This is reality. I have been working as a non-experienced cybersecurity analyst and all 3 point are exactly what I have been realizing, it is a lovely career but you can not stop learning, there is just so much to learn.
It is a very interesting industry and the advice I'd give to newcomers would be:
1. Make sure you are having fun (it's a fun job after all)
2. Stay hungry
3. Be curious about everything
4. Work on your work life balance and stress management
5. Knowing when and how to take a break
6. Find friends, colleagues who are passionate about this field. Work on things together, discuss the topic together. You'll grow together
Good luck
thanks your comment give me postive energy
Thanks sir.
Thank you
Thank you for that perspective and advice, I will keep this in a note for myself and act towards living through these steps. Intuitively, I feel that these few points are absolutely key to finding satisfaction in IT and pretty much any job title or industry.
You are a true motivation ❤❤
Tbh, if you want to get into cyber the easy way just join the military. Serve a few years in a cyber MOS/rate( most of which provide a pretty comfortable living- you should focus predominately on the Air Force/Space Force), soak up all free training courses/certs that are available, get a TS/SCI with a polygraph, and actually walk out with a 6 figure job lined up for a defense contactor or even a government agency. I have done this myself and know a ton of people that have followed the same route. Its much easier than trying to break into cyber with as a civilian with zero experience.
That's the cheat code. The government contract requires the security clearance, not any cybersecurity proficiency.
Before watching this video i was thinking about paving the same route you took for myself ... im in the process of getting my comptia A+ cert ; up until i get security + before i join .
Im kinda afraid that ill score low on my asvab and that wont even be a job opportunity for me . Just a little fear i have .
@@JumpinFatJack You can always retake the asvab if you dont qualify. Theres also tons of study resources out there. Good luck!
hey man im a highschool junior getting my certs in both net+ and sec+, probably getting my a+ as well and really wanna do cyber as a career path. Im really thinking about joining the air force in a cybersecurity field while going to college in hopes of getting a security clearance.. do u have any advice for me? like should i stick with my plan or should i not dedicate those years to the military and instead focus specifically on other paths. I'm not necessarily lost with what I wanna do, but would like help from people with experience
Wish I would live the states!
Took me 2 years on the dot to land a job in Cybersecurity from scratch.
I agree that recruiters are looking for more than technical ability.
Also great point on the culture and awareness piece.
Your videos helped me a lot - thank you.
Could you give me a little bit more information about how you got the job? Did you have degree? or any certifications?
Can you please share your roadmap to getting there and what job did you land in cybersecurity?
Wow 2 years
I think to cure of the negative aspect of cybersecurity, the best way is to work remotly while travelling with a disciplined time management, or just freelancing , this is how I reduce stress and burnout , the whole thing is about companies.
You post and I drop everything almost immediately to hear what you have to say. lol. Going into year 3 myself and I feel burnout often. I do security, privacy, AND compliance on my team and they all take different approaches. I have to know some of everything from securing infrastructure to knowing different laws and even project management and auditing. I run off the clock at 5 and don’t look back.
The silver lining about those entry-level jobs vs the higher paid positions is that once you finally break in, you begin to understand exactly how you can grow into those higher up positions. I'll be hitting that 1 year milestone this year and I feel like I'm basically in the same spot as you. On top of the alert fatigue, I've noticed that sometimes I'm the only one taking a critical approach to our processes. Which is good for me, but it kind of puts me in a lose-lose situation because if I identify a new issue, guess who gets assigned all the work to fix it? 🙃
Well said! Try to keep up the good work 💪
What job titles should I be looking at for that first entry-level position to grow from?
I did the whole ITF+, A+, Network+ and Security+ certifications thing, since my BA wasn’t in the tech field, so I know whether things are more vegetable or mineral, but I’m not sure where to go from here.
@@Sonicstillpoint83 Pretty standard answer here but I'd say go all in trying to get a SOC Analyst position. Chances might be better at a MSSP, bonus points if they provide other IT services or if they work with government clients. Those are the conditions that helped me land my job - a separate IT team means the SOC Analyst role is more focused where a beginner can succeed, and if they have an open position you know they want the role filled ASAP for clients. That's the ideal way especially because your certs are a good fit in that scenario, but apply to any SOC Analyst position. It feels much better to explore more preferable job titles once you've broken into the industry.
I would like to echo @sonicstillpoint83 's question - what was the title of your entry level position? Did you go to school for this field or did you make a change from a different industry?
Please tag me if you get an answer!@@CD-rt8wj
Great video. For me as a person who is working at non-skilled job and learning some python programming for data science and data analysis at online university courses. I already know a lot about the tough realty that I live in. Companies are hiring people with recent experience.
Intellectual curiosity and self motivated lifelong learning are both things that really help as well..
I liked the way you talked about this with honest and no fake expectations as the other people tray to depict this industry.
I have always liked to get into the cyber security industry and am still facing a lot of challenges and also realized that this job is not smooth and quick money machine but I like it and I feel that it's the only one that makes me happy when am learning it. And it's not gonna be a paradise in all corners somethings will exhaust you, other things will make you happy in this industry and that the way of live.
You hit the nail on the head. I entered Information Technology 17 years ago after graduating & had aspirations of repairing computers, maybe opening up my own “repair shop.” Obviously the whole industry has flipped - the demand for networking/server/cyber skills started to mount, so I followed the direction the industry was going.
I find myself now in a very similar place, being a “security” professional, but feeling overwhelmed with having to catch up with certs, organizational demands & stresses attributed to the industry.
Doesn’t mean all days are bad, but it’s not the same career I went to school for years ago! So much has changed!
Anyway, thanks for your thoughts. Appreciate the video.
Currently in my last semester of undergrad studying cybersecurity and I'm realizing that I really should've taken the time through my studies to maintain my technical skills. I've got Sec+ and currently "backtracking" to Net+ to get a decent refresher on networking. I'd say my biggest regret was not trying to get experience while in school but I'm optimistic about the getting into the field end goal rn is pivoting into cloud security.
How have things been going for you? Im a junior studying
cybersecurity and would love to learn what you have gone through since graduating.
There are not unfilled jobs in cybersecurity. Maybe there should be to protect our data but there is no money for it. Security is always considered optional and is the first thing to be cut.
exactly
I started my first job in cybersecurity a little over a year ago, after about 3 1/2 years in support and I have to admit that I got a little burned out after about 6 months. Mainly, I think I went a little "too hard" my first several months and was literally doing nothing but "cybsersecurity related" activities (finishing school, HTB, reading, podcasts, other things). I definitely found that you need a balance like any other job and it's okay to not further your knowledge every second you're not working. After I found a balance, I've definitely been more at ease and enjoy the space more.
I can understand the frustration of constantly having to learn but trust me on this side there are jobs where nothing changes, you don't learn anything, and at the end of the day you have nothing to show for it. That's why I'm getting into tech 😅
I've been a firefighter for 7 years now and I wish I knew how much I would be struggling financially before I jumped into this career. Don't get me wrong, I love my job and no matter what I decide to do this will forever be the best job I'll ever have. Unfortunately, it doesn't pay well. I've been thinking about getting into cyber security and it stresses me out thinking I might not be able to land a job for a couple of years after I have all my certifications and entry level jobs such as front desk might not pay well either.
cybersecurity is a lifestyle. It's not for everyone. If you are not 100% serious with it: breath it, drink it, eat it; then it may be a little tedious for you.
It's one of those careers that WILL consume your life. I know guys in cybersec who've become shut-ins. They're making good money but have absolutely ZERO social life.
I don't agree with the career that consumes your life. I know many people who are pretty social and cool who are long time professionals in cybersecurity @@gotthecutenessoverload1086
@@gotthecutenessoverload1086 I have no idea what to do now after reading all that.
@@Skny70 there are plenty of other IT related jobs, and they pay well too. You can look into those.
I get side traced easily but I always come back to this kind stuff
Love that quote "more of a talent and experience gap".
Interesting you are seeing the politics side of cybersecurity after year 2. Its 100% a company culture issue. Not every company is all in with their cybersecurity program. The most valuable skill you can grow (over any technical skill) is to learn how to "sell" the needs of the Cybersecurity program BEFORE a breach.
I agree with all the points you just mentioned. I am a fresh graduate with CS background and am jumping into cybersecurity.
Completely agree with your comments about an organization's culture and people impacting how security happens at a company, and wanted to add that I think there's a gap between "skills that people think are needed" and "skills that are needed." My first role in security came after 14 years of working in other industries and slowly floating in the security direction. My current role is 80% non-technical and I feel an enormous pressure to upskill and am doing so, but also find that I'm able to make big impacts by more general business/communication skills, like running productive meetings, following up on emails that I haven't gotten a response to, and remembering that last time I talked to X person, their pet was at the vet, so asking about that.
I, too, am coming up on over two years in my first security role and am trying to build longevity in the industry. Figuring out what to learn and do next is tough - there's SO much! Thank you for posting and sharing your thoughts. Good luck to you!
This applies to many IT positions, or even many skilled, non sales positions. Definitely how hard it is to break in, but also the hurdles to accomplish anything as a junior associate.
Thank you for this honest clip
Thank you for the message!
To help with overload/learning is to do it at work if possible and once you're off....DONT THINK ABOUT IT. Sure I'll read an article here and there but being able to close my laptop and go on with my day/life is great and needed to be fresh.
#3 is common for IT in general. At one of my job, alot of people were new to IT (1-3 years) and I can tell they were suffering from burnout. Once you hit the 5 year mark in IT you are a lifer and that's really when you can get the high paying jobs
I love this video because you were being real. Much respect
Those cybersecurity carreer videos lead me to reevaluate and rethink some important stuff i need to come to terms with since my last burn out in the industry. I'm writing a journal about it, and i find your content inspirational. Thanks for the upload!
I've been doing some writing too, if I decide to stick with IT, I may shoot for sysadmin work instead of cybersecurity. I am a hands on guy and like the hardware side more than the software side of computing.
@@saby7825 in my case i think i need to leave threat intelligence behind and maybe start considering specializing in malware development and other red team related skills. Shoot for a solo carreer or become a professor? It's all confusing now. Well, the best of luck to us!
@@Guilhermeabcd if you're interested in red teaming, I'd say go for it. Best of luck whatever you decide to do!
The issue with Cyber Security, right now, is that it's a very broad niche field (yes, I know that sounds paradoxical). Thus, what recruiters are looking for are very all-round security professionals. People who have an understanding in incident management, in GRC, in project management, in security architecture, in training and awareness, in pentesting... you get the idea.
Decided to change careers late in life …15 years of loss prevention/investigations and now studying for my A+ and Security+. Learning a whole new skill set and looking to break into an entry level IT job. Thanks for an honest video. Lots of these boot camps just make it seem like you’ll have a job lined up after completing it and that probably isn’t the truth always.
I'm in a similar position. Gained A+, studying for sec+. I recommend getting into AWS cloud as well. I have the Practitioner cert and intend to get the Solutions Architect. Not only is AWS a popular cert to have, I find that studying helps to expand one's knowledge of enterprise level IT.
I'm a help desk support specialist. It is a good start to entering the field and rounding out your skills. One may have to start there and then shift to security which I hope to do. There are so many entering the field, just find a way in!
Go do something else other than IT because you will age out. No one wants a 50 year old IT guy so your career will be over sooner than later.
@@Sifar_Secure how long did tha AWS stuff take to learn and get? the A+ and sec can be done in a few months.
A very honest video. The burnouts are real. The stress and churning out of new stuff every hour is tiresome.
Hey, but come to think of it, we soldiers in the cyber space, protecting the vulnerable. It's a price we pay for choosing the cybersec path.
Thank you so much for this video! Keep them coming brotha, I love the realistic take.
I appreciate the kind words here. My intention is not to come off overly pessimistic about the industry. Hopefully this provides a more transparent / realistic overview. Cybersecurity is still a great industry!
@@collinsinfosec I am about to graduate with a cyber security associates degree and I’m about to take my sec+ and as I look for jobs and talk with my current internship opportunity I find there is a bit of overhyped talk on jobs and pay in the cyber security industry but I’m not allowing it to keep me from perusing it even if I have to work at a entry level for a while
@@Stonedrolleryou say that there is overhyped talk on pay but would you agree the pay is definitely over 80k?
Been trying to break into it for 2 years now. Stuck on Hell Desk, which is also repetitive.
I have no illusions about the grass being greener on the other side, but getting a company to take a chance on you so you can at least earn experience in the field to put on a resume is daunting.
Not much else can be done about the situation other than continuing to upskill outside of work.
Great video btw.
I’m in the same position. The only recommendation I have to is to either get certifications that are recognized by companies or government. Learn coding and start projects on your own. Just grind it out until you get an interview for an entry level. Once you get the foot in the door, do everything to absorb as much information as possible.
@@blackwhitegrey001 good advice but there is no need to “absorb all the info” companies don’t hire ppl to train them be qualified enough to do the job from the start
@@nightwing09xthere are Google courses which you can complete that you can put on your resume
Im a veteran with no cybersec experience in the military and went back to college for a cybersec degree. Its still disheartening putting in all these applications and getting rejected. Ive often thought of just reenlisting. I hated my life but at least I could afford some more consistent things...
Re-enlist and make sure you have an active security clearance. Then the gravy train flows. Companies that demand a security clearance won't hire anyone without one. You can be a green cybersecurity job prospect, but that security clearance is what they really want.
Jobs.gov, apply to any entry level IT. Also network at IT events, you just need 1 person to give you a chance and then your in. Best of luck!
@@BandanazXis secret good enough or do you need TS?
@@ghostirq Check the postings at your various contractors like Booz
Yeah I'm veteran too was weird going from. Job security to getting rejected by random jobs
automatic follow after this video. I am currently half way through my degree and this is the most important thing I have consumed. I appreciate the content
The only solution for burnout is to switch domain, let's say from SOC to detection or threat hunting, and vice versa. All points you made are 100% right.
I realized recently that the entry level or first job difficulties makes a lot of sense actually. Cyber security students understand you need to implement the best security measures possible for a specific system based on constraints like budget etc. But fail to realize that if you had something so valuable it is worth employing and paying people specifically to protect it, would you hire the guy who has been protecting stuff for 10 years and seen it all, or a student/person with a couple of certs who has studied theoretical "book" knowledge and experimented with a couple of projects here and there?
I know which I would choose if I wanted my valuables to be safe.
Think of the same scenario with physical security like protecting a bank vault or high value prisoner or something if your brain can't make the jump to understanding the cyber analogy.
yeah but it does not make sense have you ever heard about Junior position
The defense in depth buzz word is important, it's a really sound strategy for hardening.
Thank you for sharing the information and the experience you went through
Happy to share. This is just my experience. Everyone has a unique perspective, it's good to ask around as well.
Just been back to uni at age 35 to do a Masters degree (conversion) in cybersecurity. I got into it because I was told "theres a skills shortage". Every single day I've felt like todays the day I get found out (because I'm an imposter etc and not very good). I got to say, now that I've finished, all I'm hearing is "you know that skill shortage we talked about? Yeah it doesnt exist. Its very competitive". This is exactly the position I did NOT want to find myself in. I already had a useless bachelors degree before this which didnt get me jobs. I think what Im really hearing from within the industry is, as you said, not a shortage of people wanting to do it, but a shortage of people who are GOOD at it. I STILL dont feel good at it even after my imposter-syndrome fuelled masters degree. Now I'm worried to death that it was all a waste of time and a massive con. Also I was keen on the idea of a piece of paper that would get me good jobs pretty much forever, but now all I'm also hearing is "you need certs, then more certs, then renew your first certs, just keep learning" like it's some kind of treadmill that I should never have gotten on in the first place. I gave up a fairly decent job (for my level of academic ability) to go and learn this stuff to change my life. It's starting to feel like it was all a bit of a lie. And I'm not sure how I'm ever going to explain this in job interviews for the rest of my life, which is what I will inevitably have to do if I can't get into something decent cyber-wise.
wow so relatable mate! Sometimes I think to switch careers to become a developer.
Thanks for being transparent and authentic. I've been wondering if cybersec was worth it given the mountain of info needed to get into it. This video has convinced me it's not for me. Still subbed though. Cheers!
Yeah that first point I definitely resonate with. Everyone always talks about how cybersec is a booming industry and for me, I'm trying to change careers into cybersec right now I've obtained a bunch of certifications and applied to 40+ job postings and pretty much getting ghosted in all my applications. Most employers don't want you unless you have job experience but the question is....how can people get experience if no one is hiring. Sad times
This IT worker "shortage" is self imposed by employers themselves. They've created a catch-22 condition when they won't hire and train inexperienced workers. They have no right to complain about staff shortages when they don't give newcomers a chance. Companies used to train their workforce and now they just expect experienced workers to grow on trees.
You are doing good work with these vids bringing out the reality of things. I think the industry is getting a reality check for years of unrealistic expectations over the years. You definitely have to have a passion for it too - burnout is so real lol so thanks for bringing that up
I agree with everything you said Especially the skills gap. They key is if your company is not huge with lots f different types of cyber professinoals you have to real continue to learn and study outside of your job laerning new things. If you dont do that you will stagnate and have a hard time moving up. Interviewing alot of candidates for mid to senior positions alot are too tool oriented without fully understanding the fundamentals of logs, what a compromised device would potentially look (lateral movement, exfiltration, kerberos attacks, etc..) If you have a solid understand of those things without using qradar or crowdstrike I think quite a few hiring managers would take anyone for junior- mid positions.
humble and honest.
Thanks for sharing, I'm about to start my first job in the industry after a long period of studying and working hard to get into it. Excited to be on the journey
Do you have experience or certifications?
Theres so many youtubers that act like tech is soo cool.
But yet after one year theyve quit and theyre trying to make a career of youtube lol. Youre one of the few whos really saying how frustrating it can be
Having 20 years in cybersecurity, I can only say.....companies or customers interest are not focused on solving security issues. They don't care. Now everybody wants to work on cyber security because its demand, but little do they know how complex, demanding, and frustrating it its to work in this industry. Cyber sec is seen as a liability.
Exactly..... My last job made me rethink cybersecurity. Companies look at security like after thought. Especially big companies.
@@Jupiterxice Sincerely I work in cybersecurity because I were always curious and started it as a hobby and a I love it. But if you are looking for a rewarding job position.....Cybersecurity is not the place. Nobody will congratulate you for mitigating attacks which nobody will see. So, if you had experience already, maybe time to change strategy. Good luck.
I am someone who fell for all the marketing schemes, took a bootcamp, got some certs, and somehow landed a job. However, I think actually getting an entry level job in this field is based on pure luck and connection. Once you get your foot in the door it becomes much easier to move up in title and/or salary. I will say that when I was in my entry level role the people who completed bootcamps were absolutely on the same, and in some cases higher, knowledge level when it came to cybersecurity concepts when compared to individuals who were self taught or had a bachelors in Computer Science. The people that have a better understanding will move up quickly into those 6-figure roles, but this requires continuous learning.
Totally agree, most people in cyber came from different areas of IT, the Brazilian market is the same thing
Have about 23 years in IT, trying to get into Cyber, mostly because i got tired of doing operational work. First and foremost, learn how to build relationships. Segmentation is real and you have to be able to communicate and leverage the relationships you build, as you may not have required access to do a ton of functions a task may require. Learn something you love, master it and dont try to know it all. Be resourceful, god only knows how many articles, how many forums, how many 3rd party support calls Ive had to make. Learn to take breaks when your body is asking you to, you cant enjoy the experience if youre not also enjoying your life.
I am just getting into it and so far I love it. Sometimes it can get overwhelming but I've always loved to learn new things and be that guy that Is always finding a program or a better way to be efficient. I get board i love solve problems. I also quit and all my cards are on the table. I'm hoping once I gain a little bit more experience I hope I can find an entry level job. 😅
Thanks for uploading.
I'm switching fields because where I am jobs are pretty poopie for folks in my type of situation. I have a LOT of HR skill and experience but...no one's really looking to hire an old military vet like me, I suppose.
Oh well. Crying about it won't fix anything or feed my kids, so I'm switching fields and will handle this, myself.
Take care, everyone
I think security fails as a whole because security is rooted in the mindset that once you get in, you're done and no longer need to learn. It's also rooted with the mentality that you're going to be doing crazy things like "hacking." At least that's the way all the other channels convey this field to be. In addition, these gimmicky channels often sell you the idea that cybersecurity is an easy field to get into simply because of the demand that exists. When in reality, it's like you said, there is a lack of talent which is a contributor to the rise in positions available. It's very unfortunate to see how misleading those youtube channels are and truly appreciate how real you keep the information.
Great job setting the record straight, Grant
Hey Grant! Great video, also loved your last one on IABs. Been subscribed for a while now, we were on similar paths when I found your channel as I went back to college from 2018-2021 and got an IT and Cybersecurity degree. Ended up in a do-it-all type of IT position in local government. This is random af but would you want to start a podcast? I think it would be cool for us to be able to talk about our real world experiences as early career IT professionals that could really help a lot of people exploring or getting into the industry. Could also talk about hot topics in IT and I think we would mesh well together. Either way, keep up the great work man and I continue to follow your journey!
Great and informative video about the industry :) Subscribed!
16 years in the industry, recent role security engineer, this is spot on :)
Great video Grant. Made it very easy to hit the subscribe button.
Love the honesty, thank You !
Being a Senior Cyber Security, I can say that it depends on the type of team you are in. There are teams like SecOps where you spend weekends on queue and there are teams that does day to day ticket work involving minimum efforts. Get into the right team depending upon your aspirations. The upskilling part is part of the job as a whole in IT, doesn't matter if its SDE, SRE or Cyber
I’m actually starting a bootcamp thing that’s like 3 months long. You get 5 certifications from it. Doing this while I just make a living from home anyways so i thought why not. There are several different ways you can pay for the training and I chose for it to be deducted from future salary until paid off. They only deduct when you are making a certain amount and you are only required to pay them back if they land you a job which is cool so I said why not. Worst case is I don’t land a job and learn a bunch of stuff for free. Best case I land a job and pay them back, and if they get me a good job I’ll pay them back fast. I mainly want to try it out because I like the field and the remote work.
Zero experience, just started taking classes. I love it. So interesting. I get I am most likely not going to come out making those monetary goals. But I will be looking for internships. I hope this is going to go the way I want it to.
I wish I researched cybersecurity much more thoroughly (youtube & reddit) before enrolling in school. I learned that being "technical" and decent with computers isn't good enough to succeed in cybersecurity or IT in general. Now I'm studying supply chains management and I love it
Great video! thank you for posting it. I wish I've seen it last April when I started to work on my sec+. I worked with DOD overseas. decided to change my career to cybersecurity. I was under the impression of having the sec+ with security clearance along with DOD analyst experience would be enough but it's not! the job market is crazy. I am competing against experienced people with a lot more to offer and it's almost impossible to find a cyber position that doesn't require more than 3-5 years of hands on experience! I am regretting it already. I just couldn't be away from family forever so I was hoping to settle having a M-F job in cybersecurity but I guess I was wrong! tired of applying and not hearing back or being ghosted out by interviewers....
I got two jobs, one as an infosec analyst full-time and the second as an MDR analyst part-time. It's awesome.
Glad you explained that you cannot simply pass a few exams and expect a top job in cybersecurity. The amount of knowledge required to be effective in a top cybersecurity position is acquired over years of experience (and variety of experience) and there really is no shortcut. Then you raise the important point of the rapidly changing and expanding knowledge required to maintain that 'senior' level. I was a 'senior' cybersecurity person for nearly a third of my 42 year IT career and knew it was time to consider retiring when large enterprises, like the ones I worked for, were migrating their entire networks to the cloud. The vast new oceans of knowledge required to be effective in the 'new environment' convinced me that it was time to pass the torch to a new generation.
Great content man keep it up
I'm just interested in it for my own curiosity. Don't think I will learn enough for a job. Just anything I can gain from watching videos is better then looking at FB reels
I think cyber security is not for everyone, you have to be very passionate about it and highly motivated. Besides, organisations, companies and individuals get it wrong when it comes to cyber security, the way employees are hired, certifications, e.t.c I just think there isn't much of a solution when it comes to cyber security
Thanks for your content it's very enjoyable! - Keep up the good work!
Thank you for the kind message!
So true, I have a bachelor's degree in computer network a cybersecurity certification and I definitely thought that I was going to get a job in the IT field easily. I've applied for so many jobs in the reality is without experience is much harder.
As a cybersecurity student myself, I have been told to look for a job in the industry while still in school. I've been following this advice and looking for a job for a few months now. I am having an extremely difficult time. I don't have a degree, I don't have any certs, and I don't have any experience, so I get turned down for even "entry level" positions. It's rough out here.
I hear the Cybersecurity domain map helps a lot when it comes to finding a way in based the path you want to take
can you please explain to me what you mean ?
Have you looked up the domain map?
@@HyperdriveRecruiting yess
I'm trying to get into cyber security, but I never had an experiences of basic of I.T since they never had one in the first place. So it's gonna be very hard for me to adapt to certain things since it 's not too friendly for beginners.
Enjoyed this. Thank you x
@4:03 The true expectation is that you do everything. They need you to do everything, instead of focusing on what you studied for. From what I found is that many companies would rather off-set cost to an outside cyber security vendor with insurance, rather having a cyber security analyst team (some corporations have both). But, as many companies are already suffering to what's happening to them, like Ransomware, they are finding out that it is costing them more, rather than recruiting. But by then, it is already too late.
This would be the only time where I would say that government needs to intervene with a heavy hand. These corporations are playing with peoples PII and other sensitive information.
It’s just life , some just get a little lucky and break into some fields because of people they know and develop from there and some have to go in the hard old way by looking good , it’s almost everywhere nowadays
With your resume it also helps to write your years of college as experience. Technically it is, as you've been working on all sorts of projects throughout college. A real job usually focuses on about 10% of that, with most of it dealing with the ticketing software and other software/processes, but sometimes, depending on how your resume is written, it can help out. I got an entry level IT job and whilst it's not the one I wanted, it's far better than a retail job.
I also feel that when it comes to organizing life and managing burnout, that the best thing to do is, for me, to set specific general goals. That is, for my training, they want me to get a certification. So I pick three days where I study heavily and 2 days where I study a little lightly. Makes it much easier to manage. But you have to stick to it.