Millions of jobs going begging in the US because EVERYONE, including corporate America, is entitled these days. They believe they deserve an employee with 10 years experience willing to work at intern level pay.
Yea and considering 99% of companies offer 0 forms of training they can’t bitch about no skill gap either. Mfs acting like everyone can just drop their whole life and focus on cyber security, sure it’s important, but at the end of the day it’s a job. I’m not going to ever sacrifice the true value in life for any job🤷🏻♂️
Hit the nail on the head with networking. It's how I've gotten my current cyber job & any other interviews past and future. Another hard pill to swallow is cyber is not an entry-level field. Working with a fledgling cyber professional that is missing cyber foundations and IPv4 fundamentals, among other things, is frustrating. You don't need 5/10/20 years in another discipline to break into cyber, but if you don't have a bit of tech experience, you need to have an immensely broad understanding/skillset to get an entry level role.
It's funny to watch older IT and software folks who still can't stand using anything command line, have to use GUI for everything. Knowing command line really can get you fast tracked to the front line.
I've just been offered a job as a SOC analyst with 0 qualifications, certs or work experience in cyber. Current role was helpdesk analyst for 1.5 years with ELK experience. I added my homelab and ctf experience on to my resume too and got an interview then the job offer. Soft skills and a current job in a Well known company definitely helps.
How did you portray the CTF experience on your resume, if you don't mind? That is the biggest hurdle that I am facing in resume writing-relating home study that doesn't end in a certification or something tangible besides knowledge.
@@RaEndymion it depends on the employer, basically putting that you run homelabs and have done CTFs on your CV as actual skills is the best way. Let them ask about it in the interview and then geek out explaining your setup to them. One thing most people trying to get into cyber don't seem to understand is that you don't just start a cyber role, you need to have 6 months+ in a previous tech/helpdesk role because it proves that you've been trusted with data and passed your probation period. The industry is crying out for talent at all levels but if you're a nobody with no current job or something completely unrelated then why would a company trust you with its data (thats potentially worth millions)? Some of the worst cyber attacks come from employees and many cyber jobs require extensive referencing, the fact is most companies want to take a chance on you but they need to see that you're experienced with tech and can be trusted on your CV first before they'll offer an interview.
I personally landed a graduate role for a big 4 company next year and I can say that consulting and software companies in Australia have started picking up grads for "entry level" cyber positions like theres no tomorrow. Hopefully we'll start to see this trend internationally as well
That's internationally already, big 4 are known for that, hire new grads. Don't want to break it to you but i don't a single person that it's happy working in a big 4...
@@scriibyy1763 they have some of the highest satisfaction % from their employees especially seeing as you can work whatever hours and from whatever location as long as the job is done. That's only big 4 in Aus IBM, Atalassian, Mastercard and banks also have started the hiring grad trend. I wouldn't be commenting about it if the intake was only a few thousand. Over 90% of cyber grads here are working in industry within 3 months of graduating purely because of the booming cyber market
@@user-gu7ti4pu8f well I'm not talking about satisfaction rates I've seen online, I'm talking about people who worked there and told me his experience. And that's what they told me... I'm talking about Spain tho but i doubt it's different in aus. And big 4 consulting it's definitely not known for having a lot free time...
Congrats!! I think this is a good place to gather experience, but the big 4 will work you down until you literally have nothing left. The burn out rates are crazy and it's an extremely competitive environment. Get in, get some experience, and get out in my opinion. But nonetheless, you got a great place to start, don't let anyone stand in the way!
I think the brutal answer is that Students arent special anymore. They have close to no value to give to corporations mainly because of the lack of experience and the fact is that other people want that entry level job who have job related experience. Best advice for students - PROJECTS!! Treat your projects like projects you would do in an office. Do you document, is there code involved, how can people access your project (pdf, website, github, code base). There are many ways for a student or entry level to shine against other entry levels who have experience in IT.
Totally agree, Demonstrate your commitment on a day to day basis, not just a weekend writing your resume. Show that you have skills in different ways, different environments, and document well. Don't forget sometimes the documentation may be read by someone who is not as familiar with the subject, (think a board looking at why they should pay $x for an upgrade or to have some work done). Look at yourself from the perspective of a recruiter, and what would make you choose an employee.
@@lfcbpro orrrr employers can stop being cheap and put a little money, time and resources into training. Wow maybe people could learn with training 😱 I shouldn’t need to be sacrificing time with older parents and friends, and time to relax and rest, to get a dumbass tier 1 help desk job 😂 I do a tier 1 help desk job at home helping my whole family with electronics and computer things 🤦🏻♂️
@@lfcbpro years of experience troubleshooting and helping with my parents, 2 years of school + associates , bilingual, 5 years of customer service experience and these idiots think I can’t help people reset a password ? 💀😂 hilarious. Maybe employers need to look at themselves, if it keeps going this way, one day the demand will be sooo much higher than the supply, everyone will be fucked and the Internet will be more vulnerable than ever before 🤷🏻♂️ simple
@@litaf4889 There's millions of people who would love to get free training and a salary for a job they technically aren't capable of doing YET. Everybody from recent college grads who can't find a job, to highschool only graduates, to highschool drop outs, to people in their 40's looking for a career change. Anybody earning less than an entry level cyber role would probably jump at the opportunity of a free career swap into a lucrative field thats paid for by somebody else. In this reality, even if a company wants to train and invest in potential talent, the question is who should they invest in and who will they bring on? And the answer will still be the few people who put in personal time and effort to self-study will be given these roles with full training provided to fill in the remaining knowledge/skills gap. If there's nobody doing homelabs, or doing blogs, or some other kind of self-learning, then companies will find another way to discriminate to filter out the few people from the thousands of people in their local area who would jump at a free career upgrade. In fact, it's better than free, the company actually pays you to upgrade your career in the form of a salary while you're training!
This makes me rethink wanting to invest my time, money & energy going to cybersecurity especially with no guarantee. I’d rather learn a skill on my own & make money that way in a shorter period of time. Very true & great video
This is a fair opinion to hold. But what career path do you know of that guarantee's results? As far as I know, there's no career on the planet that can provide that. Maybe if you went into the trades? I don't think I've ever heard of an unemployed trades person.
I have 12 certifications and 4 classes left to graduate and to get my bachelors in cyber security. Plus, I have 3 years of experience as help desk level one. I’ve been applying for entry levels jobs since April last year. 100+ jobs applied to and I pulled only 2 interviews and both were expecting me to have at least 2 years of experience in cyber security. Going back to school was the biggest mistake I’ve done in my life honestly. Too much time and energy were wasted for nothing.
Sounds like your Resume might be the problem. I have no certifications and only an Associates degree and have had multiple offers and interviews. I know this will be amplified once I get my certifications completed.
You have to get some IT experience on the help desk or network engineering and then try to go into cyber. Not exactly those 2 jobs but most of them the want some type of IT experience or you need to know Splunk and wireshark. I walked right into cyber but I taught myself the softwares
im not gonna lie, im a cs student atm and halfway through college i realized i want to do cybersecurity but now im kind of discouraged because of how hard it seems to get a job in cybersec
I understand it can be an overwhelming start. I feel this to this day. You can absolutely transition into cybersecurity with the right approach (self-study, projects, and community networking).
i know there is a important point here that is able to sell(promote) yourself. i see guys on linkedin who even has not a specialization in something but one of them working in senior positions technical stuff. it is unbelieveable but yes it is real. it does not matter you are really good at something it is pointless if you can't show to others.
A story is all this time I imagine. Society telling its youth that they need to do x and then once they complete x the society says we don't need x anymore. What a giant bait and switch. I was told by many people that if I went to an automotive trade school I get a job making lots of money as a mechanic. After further research turned out that that would be the 1% of mechanics and not the majority.
I have been in Cybersecurity for 3 years, started green (with a few years of support experience) but with no college degree. I have since even been promoted. He said networking, and its so true. I got the 1st job because someone in my company recognized my potential. I interview people for analysts now as well. I always ask as a baseline about how office documents are weaponized, and if the user clicks enable editing, what happens? Can you find the data, and decode the base64 to find out what domains / IP addresses its calling to? Did your EDR block it? Do you even know what EDR is? Stuff like that.
You are completely right I have been reaching out to CSO and security architect in my current company just to chat about security posture of the company and to show them my initiative about joining security team and right now I am working as Information Security Officer 50% for my company and 50% for my previous app management role so I am now like a bridge between two teams which is perfect.
I have a Master's degree in IT with a focus in Cybersecurity, have been studying for 4 years, have some lower-profile certifications and a general, well-rounded knowledge base, and can't even get an interview. Companies simply don't want to invest time in developing people that show an aptitude and willingness to learn. My own company promoted someone that had been with them for a fraction of the time for a position that I helped build and was doing some of the work before hand and used the good ole "lack of experience" excuse. If the industry wants to close the projected shortfall of security professionals, companies need to do their part to help fill that void and stop putting the entire onus on the potential employees.
This has been my life as well since graduating in December. I’ve obtained Sec+ and AWS cloud practitioner certs as well as doing home labs from home and currently working on my website and blog. I’ve gotten rejected many many times the past couple of years since I don’t have enterprise experience but I’m not going to give up. I’ll do whatever it takes to get someone to see that I would make a great asset for their company. The same goes for anyone reading this comment. YOU CAN get that job. Just keep grinding, polishing that resume, and getting certs that push yourself forward. Do anything and everything to prove yourself. One day, you’ll look back and be glad you didn’t give up.
I was joking in last comment. That was joke. But on a serious note, how much cybersecurity degree cost. and how someone with 10 percent know ledge in IT get started. Can a certifications in cybersecurity help. What are things that are needed to get into cybersecurity? Are online cybersecurity degrees are same as offline?
I think it's better to show data that includes other regions as well. In my country, the cybersecurity companies actually come to us, every year in our school. And I've NEVER had any experience in cybersecurity, I was a mathematics major but never delved into anything related to computer science, and yet my 1st job was a cybesecurity analyst. It's not as hard as it you might expect (excluding the tense training of couse). Even people from the nursing sector had their 1st job as a cybesecuity analyst as well..
Speaking from a current cyber security student in my last semester. I have been denied 20+ jobs so far. I'm studying to get Sec+ I'm working on projects. Just wrote a password manager. Set up a LAN in virtual box and am now working with tools such as Tenable Nessus, Wireshark, etc. I plan to mess with Suricata(IPS/IDS) and Wazuh(SIEM). I am indeed learning the hard way, but Ive been looking up stuff online. One of my past professors sat me down and we had a talk about it. I have an interview this friday for a Remote IT Help Desk position. I'm hoping that in the future I want to either work in Insider Risk Management/Zero Trust or more one the Network Security Architecture side. It seems like once you can make it in the opportunities are endless, so I'll keep at it. Good luck everyone and I hope that you'll keep at it and don't get chased off.
@@introvertdude99 It's just part of the journey. To be honest yeah it sucks because I'm about to graduate in 2 and half weeks with no IT job offers. But I study hard and I apply every day. Just waiting for that one call to come through ya know
@@Hunterbenx I live in illinois. I actualyl just started a job as a Systems Administrator a month ago. Guess the hard work paid off earlier than expected
This is the most frustrating job search I've ever had. I'm not even getting inquiries. I'm literally in a cybersecurity masters program just to try and see if that helps land an internship. When I look at job descriptions for entry level positions I can barely see anything I can add to my resume as something I can speak to. There are no cybersecurity meet ups due to the pandemic. Facebook groups are useless. Cybersecurity people in general are extremely stand-offish. I've reached out to people on LinkedIn for some guidance and that the only think that's helped.
That's frustrating, you are doing a lot right here. Keep at it, even though it's really discouraging. Reach out to me: grant@cybercademy.org - maybe I can bounce some ideas off of you to think about. Happy to help in anyway I can.
Aptitude tests are going to tell you more than someone claiming 3 years experience. Companies should be future proofing by always having a junior so knowledge gap is minimised. HR often screen best candidates out unknowingly as they are screening people on the wrong things. It is in a companies interest to invest in this area, as hacking will only increase as tools to hack are more and more readily available. Networking in the modern world is likely your best get, but companies really should be creating a set of base skills they need and creating aptitude tests around these, and then being open about this. If someone as a natural aptitude you can often teach them, many people have degrees for Africa but no common sense so great on paper liability in real world. Managers should be involved more at early stages if you want the best people.
Hello Grant Collins, I am an old subscriber (4 years) I need your advice, I have studied in college in computer science track for 3 years, I studied the basics of programming, math, networking.. Etc. And I now should choose to continue my reminding years ethier as Computer science student Or Cybersecurity Student. And I feel Confused and I really don't what should I choose. Cybersecurity is a wonderful field, but is the degree of cybersecurity worth it compared to Computer science degree?
Hi! Computer science will be more "generalized." If you are unsure if cybersecurity is a good field for you, I recommend pursuing the computer science direction. If you are interested in the security field, a cybersecurity degree may be the better choice. Ultimately, either will help you get into the field of cybersecurity. In my opinion, a degree is a "check mark." You have completed what 90% of others have done. Remember, side projects, blogs, etc are good complements to your studies, regardless of the degree. Choose the degree path you are more interested in. I chose cybersecurity because I enjoyed the networking part of the industry. Others have chosen computer science for the programming aspect. I hope this helps!
If you think a degree in Cyber sec is going to be the best thing you can have in this industry you are highly mistaken. Experience and certs are king in cyber sec. Any government role or even working for companies that work for the government require certain certifications on top of a degree. 100% get certs, which ones? depends on your area of work.
Cybersecurity certifications are good! They can really help get you the job, but you don't need to go get tons of certs for the sake of saying you have certs. Some students will get XYZ certifications for the sake of the resume, but have no idea what they are talking about in interviews. Pursue certifications for the right reason - to learn and apply your knowledge.
Cybersecurity degrees are a drain of time and money, but something I still strongly advise others consider. Get the degree as affordable and time efficient as possible. It "opens the doors" in the interview process - even though I think degrees really mean nothing. Experience over everything.
I am very confused to why there's so many different answers about getting into cyber security one say's both, degree and certification other say's differently to either get certification or degree. I just don't know. :/ not sure if it's just a ''hard question'' or whatever the case maybe. look I wanna become an cyber security engineer what is the best steps for me to becoming one?
My opinion - It depends on several factors. There is not a "one size, fit all" to any industry, especially to the cybersecurity. Since the industry is dynamic and ever-changing, the curriculum of college degrees will always be outdated. The best advice is to show your potential. A university degree proves that you went through the investment of time and money, but almost everyone does that. You have to do more. Document your learning journey, stay involved in local meetups and clubs. A company can train you on the technology, but they will never be change your core characteristics, such as being a team player, work ethic, and courage. Show that.
@@collinsinfosec thank you this is the answer I needed. I was just overwhelmed with so many different answers and frustrated with how to begin, again thank you!
The reason is that the industry is still "new" and like Grant stated, it is ever changing. But understand that the more people get certs and apply to roles the more COMPETITIVE it will become to land a job. A degree is a good way of distinguishing yourself from the group though it wont be the deciding factor. Certs and experience are what employers want and need. Its such a fast paced industry that taking the time to train someone and getting them up to speed is not something any company wants. Time is money and at least having some certs (shows technical competency) and a degree (shows you can learn) can be a good combo to get you into a role. Dont fall for the "bootcamps" and " quick routes to 100k cyber security roles", there is a reason why "Entry level" jobs dont really exist. Also, if you are a college student, volunteer or try to land internships in I.T. Anything I.T on a resume is good as well. My 2 cents
@@anonyghost7422 thank you for this amazing information. I am not in school but searching for something I would love to do rather its competitive or hard I'm up for it! I also know that much about the bootcamps and ''quick'' BS ways. everyone start's somewhere and that's how I see it. I'm searching other cyber securities position and how that person got there etc... this is because I live in a small laid back city we don't have tech besides computer science in a university. I have no other choice but to take that and hope they teach me whatever cyber security I choose.
Document through a small blog and provide credit to the person. Work off of their setup, maybe demonstrate different scenarios? You can take a look at a recent video here: ruclips.net/video/wUNJiavkOE8/видео.html
@Brandon Biello you can also do this in GitHub/GitLab. Anytime I do something in my homeland that I either and to document for later for when I forget how I set something up or for scripts that I created for whatever I'm working on. The cool thing with GitHub is that there is a built-in Wiki for each Repository that you make. That's where I write out all of my documentation at least
Do it! You will have to study hard, especially if you haven't studied yet. Buy this book and study it religiously: www.amazon.com/CompTIA-Security-Get-Certified-Ahead/dp/B096D1LGSK/ref=sr_1_3?crid=2CTD4EXV5SQTL&keywords=security%2B&qid=1646174515&sprefix=security%2B%2Caps%2C284&sr=8-3
If you can afford it, Boson ExamSim was a huge help for me. Don't just memorize the answer. Try to understand what the question is asking and why. The exam will find the weirdest ways to ask a question. If you understand what they are really asking, the exam isn't terrible.
I think one thing people have to realize is that entry-level cybersecurity jobs have very little barrier to entry. It one of the very few jobs that I know of that sometimes requires a few months of college courses and some entry-level certifications. So you have a group of people with the same basic qualifications for a limited number of positions. So like it is suggested in the video, employers are interested in what makes you different. So keeping a portfolio of completed work or side projects is essential in differentiating you from the rest. Step 2 and 3 in the video are important.
No there isn't, back when I first started, I had to do internship at IT helpdesk for 2 years first. You can knock that out during your school or you will be doing that right after school. There are a ton of entry level job in IT, be it helpdesk or a MSP, those are all good places to get that entry level experience, I recommend MSP. Yes they do a lot work with less pay, but the work is REALLY REALLY good. You will learn almost everything that you need to knock into the doors of cyber security, which need knowledge in all IT field but not at the expert level.
It is certainly not a bad place to start. If you are serious about learning about cyber security, I would highly suggest watching all of the Security+ videos by Professor Messer. Even if you don't take the exam, the stuff he teaches is fundamental to learning about cyber security
@@camerontgore thank you so much for your information buddy... I am really serious about Cyber Security.. Its kind of a dream from my childhood times...
@@joe_davis Tons of great stuff on RUclips once you decide on what path you choose! While a lot of fun, just remember that ethical hacking isn't the only choice. There's blueteaming/vulnerability management, compliance, DevSecOps... Cyber is one of the widest fields out there, so find what interests you and good luck!
Anyone doing 2+ rounds of interviews for a position that isn't senior management is wasting time. Can't figure out why companies think its necessary for an entry level job.
Exactly! But nope, these broke, cheap ass companies don’t want to spend a penny or second training their own employees 😂 hilarious. Far as I’m concerned no other industry is like this to get into, it’s actually retarded.
The manager you talked to should’ve thought about idk maybe offering training for people with no experience that have a degree or certifications, and show interest for cybersecurity. Just an idea 🤷🏻♂️ the demand is going to be wayyy too high soon for the accepted supply from these picky ass employers. And if you’re going to ask for all these requirements don’t call it “entry level” 🙄🗑
I’ll say but I think school is useless. You should start by doing support (helpdesk, desktop support) and get certifications while working (Comptia). 2nd step would be to then get into networking while still getting networking & security certifications (more advanced CISCO certs) and then getting into cybersecurity. It will take time but that’s what I observed all the cyber people did in the company I work for (won’t say the name but one of the largest bank in the world)
This is a good path recommendation! Great alternative to the time and monetary investment of a traditional academic schooling, which can be useless depending on how you approach it.
You say this yet someone with more “experience” and an associates in cyber can’t get a job in help desk cuz they all ask for ridiculous requirements and qualifications for a job I have basically done for my parents for a decade now!? It’s not that easy.
Can an ethical hacker/Pentester become a millionaire? if yes how? what I see are average to good salaries, but that alone doesn't make anyone a multimillionaire
@@collinsinfosec hello Grant! Nice to meet you... I'm a teenager that really is interested in cyber security and been learning new things everyday! Your content is very helpful. It gives me a better understanding on how the career is going to look when I try to get a job in cyber security.
Millions of jobs going begging in the US because EVERYONE, including corporate America, is entitled these days. They believe they deserve an employee with 10 years experience willing to work at intern level pay.
I hate when I see job descriptions that want 10 years of AWS experience especially if its an entry level job. It's not even that old.
Yea and considering 99% of companies offer 0 forms of training they can’t bitch about no skill gap either. Mfs acting like everyone can just drop their whole life and focus on cyber security, sure it’s important, but at the end of the day it’s a job. I’m not going to ever sacrifice the true value in life for any job🤷🏻♂️
Nor my mental health ^
If you know you're going to get thousands of applications, why would you believe in a skills gap?
Hit the nail on the head with networking. It's how I've gotten my current cyber job & any other interviews past and future. Another hard pill to swallow is cyber is not an entry-level field. Working with a fledgling cyber professional that is missing cyber foundations and IPv4 fundamentals, among other things, is frustrating. You don't need 5/10/20 years in another discipline to break into cyber, but if you don't have a bit of tech experience, you need to have an immensely broad understanding/skillset to get an entry level role.
So true about the fundamentals! Great share here
It's funny to watch older IT and software folks who still can't stand using anything command line, have to use GUI for everything. Knowing command line really can get you fast tracked to the front line.
I've just been offered a job as a SOC analyst with 0 qualifications, certs or work experience in cyber. Current role was helpdesk analyst for 1.5 years with ELK experience. I added my homelab and ctf experience on to my resume too and got an interview then the job offer. Soft skills and a current job in a Well known company definitely helps.
How did you portray the CTF experience on your resume, if you don't mind? That is the biggest hurdle that I am facing in resume writing-relating home study that doesn't end in a certification or something tangible besides knowledge.
@@RaEndymion it depends on the employer, basically putting that you run homelabs and have done CTFs on your CV as actual skills is the best way. Let them ask about it in the interview and then geek out explaining your setup to them. One thing most people trying to get into cyber don't seem to understand is that you don't just start a cyber role, you need to have 6 months+ in a previous tech/helpdesk role because it proves that you've been trusted with data and passed your probation period. The industry is crying out for talent at all levels but if you're a nobody with no current job or something completely unrelated then why would a company trust you with its data (thats potentially worth millions)? Some of the worst cyber attacks come from employees and many cyber jobs require extensive referencing, the fact is most companies want to take a chance on you but they need to see that you're experienced with tech and can be trusted on your CV first before they'll offer an interview.
@@ItsOnlyLogixal Great points! Thank you for your insight.
Thank you Grant! As always, you're awesome!!
I personally landed a graduate role for a big 4 company next year and I can say that consulting and software companies in Australia have started picking up grads for "entry level" cyber positions like theres no tomorrow. Hopefully we'll start to see this trend internationally as well
big 4 are known to hire new grads (not just cyber). There's definitely a trade-off between work projects and work/life balance in big4 consulting tho.
That's internationally already, big 4 are known for that, hire new grads. Don't want to break it to you but i don't a single person that it's happy working in a big 4...
@@scriibyy1763 they have some of the highest satisfaction % from their employees especially seeing as you can work whatever hours and from whatever location as long as the job is done. That's only big 4 in Aus IBM, Atalassian, Mastercard and banks also have started the hiring grad trend. I wouldn't be commenting about it if the intake was only a few thousand. Over 90% of cyber grads here are working in industry within 3 months of graduating purely because of the booming cyber market
@@user-gu7ti4pu8f well I'm not talking about satisfaction rates I've seen online, I'm talking about people who worked there and told me his experience. And that's what they told me... I'm talking about Spain tho but i doubt it's different in aus. And big 4 consulting it's definitely not known for having a lot free time...
Congrats!! I think this is a good place to gather experience, but the big 4 will work you down until you literally have nothing left. The burn out rates are crazy and it's an extremely competitive environment. Get in, get some experience, and get out in my opinion. But nonetheless, you got a great place to start, don't let anyone stand in the way!
Great video thanks for sharing.
Great info thank you
I think the brutal answer is that Students arent special anymore. They have close to no value to give to corporations mainly because of the lack of experience and the fact is that other people want that entry level job who have job related experience.
Best advice for students - PROJECTS!! Treat your projects like projects you would do in an office. Do you document, is there code involved, how can
people access your project (pdf, website, github, code base). There are many ways for a student or entry level to shine against other entry levels who have experience in IT.
Totally agree,
Demonstrate your commitment on a day to day basis, not just a weekend writing your resume.
Show that you have skills in different ways, different environments, and document well.
Don't forget sometimes the documentation may be read by someone who is not as familiar with the subject, (think a board looking at why they should pay $x for an upgrade or to have some work done).
Look at yourself from the perspective of a recruiter, and what would make you choose an employee.
@@lfcbpro orrrr employers can stop being cheap and put a little money, time and resources into training. Wow maybe people could learn with training 😱 I shouldn’t need to be sacrificing time with older parents and friends, and time to relax and rest, to get a dumbass tier 1 help desk job 😂 I do a tier 1 help desk job at home helping my whole family with electronics and computer things 🤦🏻♂️
@@lfcbpro years of experience troubleshooting and helping with my parents, 2 years of school + associates , bilingual, 5 years of customer service experience and these idiots think I can’t help people reset a password ? 💀😂 hilarious. Maybe employers need to look at themselves, if it keeps going this way, one day the demand will be sooo much higher than the supply, everyone will be fucked and the Internet will be more vulnerable than ever before 🤷🏻♂️ simple
@@litaf4889 There's millions of people who would love to get free training and a salary for a job they technically aren't capable of doing YET. Everybody from recent college grads who can't find a job, to highschool only graduates, to highschool drop outs, to people in their 40's looking for a career change. Anybody earning less than an entry level cyber role would probably jump at the opportunity of a free career swap into a lucrative field thats paid for by somebody else.
In this reality, even if a company wants to train and invest in potential talent, the question is who should they invest in and who will they bring on? And the answer will still be the few people who put in personal time and effort to self-study will be given these roles with full training provided to fill in the remaining knowledge/skills gap. If there's nobody doing homelabs, or doing blogs, or some other kind of self-learning, then companies will find another way to discriminate to filter out the few people from the thousands of people in their local area who would jump at a free career upgrade. In fact, it's better than free, the company actually pays you to upgrade your career in the form of a salary while you're training!
This makes me rethink wanting to invest my time, money & energy going to cybersecurity especially with no guarantee. I’d rather learn a skill on my own & make money that way in a shorter period of time.
Very true & great video
This is a fair opinion to hold. But what career path do you know of that guarantee's results? As far as I know, there's no career on the planet that can provide that. Maybe if you went into the trades? I don't think I've ever heard of an unemployed trades person.
@@somebodyintheworld5036 healthcare. No shortage of jobs and not nearly as demanding as IT/ Cyber.
I have 12 certifications and 4 classes left to graduate and to get my bachelors in cyber security. Plus, I have 3 years of experience as help desk level one. I’ve been applying for entry levels jobs since April last year. 100+ jobs applied to and I pulled only 2 interviews and both were expecting me to have at least 2 years of experience in cyber security. Going back to school was the biggest mistake I’ve done in my life honestly. Too much time and energy were wasted for nothing.
School was a waste of my time, but I don't regret going there. It's now checked off for the resume. Keep going, I know it's discouraging.
Sounds like your Resume might be the problem. I have no certifications and only an Associates degree and have had multiple offers and interviews. I know this will be amplified once I get my certifications completed.
You have to get some IT experience on the help desk or network engineering and then try to go into cyber. Not exactly those 2 jobs but most of them the want some type of IT experience or you need to know Splunk and wireshark. I walked right into cyber but I taught myself the softwares
You’re doing something very wrong. Might be your resume.
Sooo what would you suggest just going for the certificate instead of the degree in cyber security?
im not gonna lie, im a cs student atm and halfway through college i realized i want to do cybersecurity but now im kind of discouraged because of how hard it seems to get a job in cybersec
I understand it can be an overwhelming start. I feel this to this day. You can absolutely transition into cybersecurity with the right approach (self-study, projects, and community networking).
If you do a software job first, then try to break into cyber, it is as easy as cake.
i know there is a important point here that is able to sell(promote) yourself. i see guys on linkedin who even has not a specialization in something but one of them working in senior positions technical stuff. it is unbelieveable but yes it is real. it does not matter you are really good at something it is pointless if you can't show to others.
A story is all this time I imagine. Society telling its youth that they need to do x and then once they complete x the society says we don't need x anymore. What a giant bait and switch. I was told by many people that if I went to an automotive trade school I get a job making lots of money as a mechanic. After further research turned out that that would be the 1% of mechanics and not the majority.
I have 30+ years in High Technology and have enjoyed your videos very much. I am improving my skills of Security and appreciate your videos very much.
I have been in Cybersecurity for 3 years, started green (with a few years of support experience) but with no college degree. I have since even been promoted. He said networking, and its so true. I got the 1st job because someone in my company recognized my potential. I interview people for analysts now as well. I always ask as a baseline about how office documents are weaponized, and if the user clicks enable editing, what happens? Can you find the data, and decode the base64 to find out what domains / IP addresses its calling to? Did your EDR block it? Do you even know what EDR is? Stuff like that.
You are completely right I have been reaching out to CSO and security architect in my current company just to chat about security posture of the company and to show them my initiative about joining security team and right now I am working as Information Security Officer 50% for my company and 50% for my previous app management role so I am now like a bridge between two teams which is perfect.
I have a Master's degree in IT with a focus in Cybersecurity, have been studying for 4 years, have some lower-profile certifications and a general, well-rounded knowledge base, and can't even get an interview. Companies simply don't want to invest time in developing people that show an aptitude and willingness to learn. My own company promoted someone that had been with them for a fraction of the time for a position that I helped build and was doing some of the work before hand and used the good ole "lack of experience" excuse.
If the industry wants to close the projected shortfall of security professionals, companies need to do their part to help fill that void and stop putting the entire onus on the potential employees.
Can you please please please do a video on the qubes operating system
Can you do a video about example resume if you just graduated from college and don’t have real work experiences
Sure, happy to share!
Damn, it is super hard and super competitive.
This has been my life as well since graduating in December. I’ve obtained Sec+ and AWS cloud practitioner certs as well as doing home labs from home and currently working on my website and blog. I’ve gotten rejected many many times the past couple of years since I don’t have enterprise experience but I’m not going to give up. I’ll do whatever it takes to get someone to see that I would make a great asset for their company. The same goes for anyone reading this comment. YOU CAN get that job. Just keep grinding, polishing that resume, and getting certs that push yourself forward. Do anything and everything to prove yourself. One day, you’ll look back and be glad you didn’t give up.
This is a GREAT attitude Austin!! Keep at it, you will be happy you didn't give up.
Assembly language is important for cyber security? If yes kindly tell me how much?
I’m 41 do I have a better chance getting into web development or some lower level cybersecurity role?
I was joking in last comment. That was joke. But on a serious note, how much cybersecurity degree cost. and how someone with 10 percent know ledge in IT get started. Can a certifications in cybersecurity help. What are things that are needed to get into cybersecurity?
Are online cybersecurity degrees are same as offline?
Yeah cyber security is a good career
I think it's better to show data that includes other regions as well. In my country, the cybersecurity companies actually come to us, every year in our school. And I've NEVER had any experience in cybersecurity, I was a mathematics major but never delved into anything related to computer science, and yet my 1st job was a cybesecurity analyst. It's not as hard as it you might expect (excluding the tense training of couse). Even people from the nursing sector had their 1st job as a cybesecuity analyst as well..
Great point, will keep this in mind for the future.
Which country is this please tell
Speaking from a current cyber security student in my last semester. I have been denied 20+ jobs so far. I'm studying to get Sec+ I'm working on projects. Just wrote a password manager. Set up a LAN in virtual box and am now working with tools such as Tenable Nessus, Wireshark, etc. I plan to mess with Suricata(IPS/IDS) and Wazuh(SIEM). I am indeed learning the hard way, but Ive been looking up stuff online. One of my past professors sat me down and we had a talk about it. I have an interview this friday for a Remote IT Help Desk position. I'm hoping that in the future I want to either work in Insider Risk Management/Zero Trust or more one the Network Security Architecture side. It seems like once you can make it in the opportunities are endless, so I'll keep at it. Good luck everyone and I hope that you'll keep at it and don't get chased off.
Interesting isn’t it? All this work for a single position
@@introvertdude99 It's just part of the journey. To be honest yeah it sucks because I'm about to graduate in 2 and half weeks with no IT job offers. But I study hard and I apply every day. Just waiting for that one call to come through ya know
@@YexyYT what state are you in?
@@Hunterbenx I live in illinois. I actualyl just started a job as a Systems Administrator a month ago. Guess the hard work paid off earlier than expected
@@YexyYT congrats bro ! I’ll take a shot for you 🥂
This is the most frustrating job search I've ever had. I'm not even getting inquiries. I'm literally in a cybersecurity masters program just to try and see if that helps land an internship. When I look at job descriptions for entry level positions I can barely see anything I can add to my resume as something I can speak to. There are no cybersecurity meet ups due to the pandemic. Facebook groups are useless. Cybersecurity people in general are extremely stand-offish. I've reached out to people on LinkedIn for some guidance and that the only think that's helped.
Same! I’m getting my masters in Cybersecurity and working on certifications and I get nothing.
That's frustrating, you are doing a lot right here. Keep at it, even though it's really discouraging. Reach out to me: grant@cybercademy.org - maybe I can bounce some ideas off of you to think about. Happy to help in anyway I can.
The stand-offish thing is right, I thought software people are like that, and now I don't even go to cyber security meetups unless I have to.
Any luck yet? Or is CS hype just a load of crap?
Aptitude tests are going to tell you more than someone claiming 3 years experience. Companies should be future proofing by always having a junior so knowledge gap is minimised. HR often screen best candidates out unknowingly as they are screening people on the wrong things. It is in a companies interest to invest in this area, as hacking will only increase as tools to hack are more and more readily available. Networking in the modern world is likely your best get, but companies really should be creating a set of base skills they need and creating aptitude tests around these, and then being open about this. If someone as a natural aptitude you can often teach them, many people have degrees for Africa but no common sense so great on paper liability in real world. Managers should be involved more at early stages if you want the best people.
Hello Grant Collins, I am an old subscriber (4 years) I need your advice, I have studied in college in computer science track for 3 years, I studied the basics of programming, math, networking.. Etc. And I now should choose to continue my reminding years ethier as Computer science student Or Cybersecurity Student. And I feel Confused and I really don't what should I choose.
Cybersecurity is a wonderful field, but is the degree of cybersecurity worth it compared to Computer science degree?
Hi! Computer science will be more "generalized." If you are unsure if cybersecurity is a good field for you, I recommend pursuing the computer science direction. If you are interested in the security field, a cybersecurity degree may be the better choice. Ultimately, either will help you get into the field of cybersecurity. In my opinion, a degree is a "check mark." You have completed what 90% of others have done. Remember, side projects, blogs, etc are good complements to your studies, regardless of the degree. Choose the degree path you are more interested in. I chose cybersecurity because I enjoyed the networking part of the industry. Others have chosen computer science for the programming aspect. I hope this helps!
Hlo sir what is highest package of cybersecurity
LOOK
into enhance IT
Do you consider taking any cybersecurity certificates? Such as comptia+ or OSWA ?
If you think a degree in Cyber sec is going to be the best thing you can have in this industry you are highly mistaken. Experience and certs are king in cyber sec. Any government role or even working for companies that work for the government require certain certifications on top of a degree. 100% get certs, which ones? depends on your area of work.
Cybersecurity certifications are good! They can really help get you the job, but you don't need to go get tons of certs for the sake of saying you have certs. Some students will get XYZ certifications for the sake of the resume, but have no idea what they are talking about in interviews. Pursue certifications for the right reason - to learn and apply your knowledge.
Cybersecurity degrees are a drain of time and money, but something I still strongly advise others consider. Get the degree as affordable and time efficient as possible. It "opens the doors" in the interview process - even though I think degrees really mean nothing. Experience over everything.
I am very confused to why there's so many different answers about getting into cyber security one say's both, degree and certification other say's differently to either get certification or degree. I just don't know. :/ not sure if it's just a ''hard question'' or whatever the case maybe. look I wanna become an cyber security engineer what is the best steps for me to becoming one?
My opinion - It depends on several factors. There is not a "one size, fit all" to any industry, especially to the cybersecurity. Since the industry is dynamic and ever-changing, the curriculum of college degrees will always be outdated. The best advice is to show your potential. A university degree proves that you went through the investment of time and money, but almost everyone does that. You have to do more. Document your learning journey, stay involved in local meetups and clubs. A company can train you on the technology, but they will never be change your core characteristics, such as being a team player, work ethic, and courage. Show that.
@@collinsinfosec thank you this is the answer I needed. I was just overwhelmed with so many different answers and frustrated with how to begin, again thank you!
The reason is that the industry is still "new" and like Grant stated, it is ever changing. But understand that the more people get certs and apply to roles the more COMPETITIVE it will become to land a job. A degree is a good way of distinguishing yourself from the group though it wont be the deciding factor. Certs and experience are what employers want and need. Its such a fast paced industry that taking the time to train someone and getting them up to speed is not something any company wants. Time is money and at least having some certs (shows technical competency) and a degree (shows you can learn) can be a good combo to get you into a role. Dont fall for the "bootcamps" and " quick routes to 100k cyber security roles", there is a reason why "Entry level" jobs dont really exist. Also, if you are a college student, volunteer or try to land internships in I.T. Anything I.T on a resume is good as well. My 2 cents
@@anonyghost7422 thank you for this amazing information. I am not in school but searching for something I would love to do rather its competitive or hard I'm up for it! I also know that much about the bootcamps and ''quick'' BS ways. everyone start's somewhere and that's how I see it. I'm searching other cyber securities position and how that person got there etc... this is because I live in a small laid back city we don't have tech besides computer science in a university. I have no other choice but to take that and hope they teach me whatever cyber security I choose.
How would I document a homelab that I built, but that another person created?
Document through a small blog and provide credit to the person. Work off of their setup, maybe demonstrate different scenarios? You can take a look at a recent video here: ruclips.net/video/wUNJiavkOE8/видео.html
@Brandon Biello you can also do this in GitHub/GitLab. Anytime I do something in my homeland that I either and to document for later for when I forget how I set something up or for scripts that I created for whatever I'm working on. The cool thing with GitHub is that there is a built-in Wiki for each Repository that you make. That's where I write out all of my documentation at least
@@collinsinfosec Great, will consider starting a blog to document projects. Thanks!
@@camerontgore Nice, I will look into using Github/Gitlab for documentation. Thanks!
I have until the 18th of this month to get the security+ what’s your recommendation?
Do it! You will have to study hard, especially if you haven't studied yet. Buy this book and study it religiously: www.amazon.com/CompTIA-Security-Get-Certified-Ahead/dp/B096D1LGSK/ref=sr_1_3?crid=2CTD4EXV5SQTL&keywords=security%2B&qid=1646174515&sprefix=security%2B%2Caps%2C284&sr=8-3
If you can afford it, Boson ExamSim was a huge help for me. Don't just memorize the answer. Try to understand what the question is asking and why. The exam will find the weirdest ways to ask a question. If you understand what they are really asking, the exam isn't terrible.
Your parts become strong to see grow subscribe
I think one thing people have to realize is that entry-level cybersecurity jobs have very little barrier to entry. It one of the very few jobs that I know of that sometimes requires a few months of college courses and some entry-level certifications. So you have a group of people with the same basic qualifications for a limited number of positions. So like it is suggested in the video, employers are interested in what makes you different. So keeping a portfolio of completed work or side projects is essential in differentiating you from the rest. Step 2 and 3 in the video are important.
No there isn't, back when I first started, I had to do internship at IT helpdesk for 2 years first. You can knock that out during your school or you will be doing that right after school. There are a ton of entry level job in IT, be it helpdesk or a MSP, those are all good places to get that entry level experience, I recommend MSP. Yes they do a lot work with less pay, but the work is REALLY REALLY good. You will learn almost everything that you need to knock into the doors of cyber security, which need knowledge in all IT field but not at the expert level.
Swallow ur pride and do tech supoort ... ---> then move to security
Humility, agreed. It's an important lesson to keep in mind.
Can only knowledge of programming..Help me at starting of my Cyber Security career..??
It is certainly not a bad place to start. If you are serious about learning about cyber security, I would highly suggest watching all of the Security+ videos by Professor Messer. Even if you don't take the exam, the stuff he teaches is fundamental to learning about cyber security
@@camerontgore thank you so much for your information buddy... I am really serious about Cyber Security.. Its kind of a dream from my childhood times...
@@joe_davis Tons of great stuff on RUclips once you decide on what path you choose! While a lot of fun, just remember that ethical hacking isn't the only choice. There's blueteaming/vulnerability management, compliance, DevSecOps... Cyber is one of the widest fields out there, so find what interests you and good luck!
@@camerontgore ya of course i am always be thankful to you.. For your advice.. Thank so much brother..
Short answer: yes
Anyone doing 2+ rounds of interviews for a position that isn't senior management is wasting time. Can't figure out why companies think its necessary for an entry level job.
Train ppl so everyone will know how the role it’s played
Exactly! But nope, these broke, cheap ass companies don’t want to spend a penny or second training their own employees 😂 hilarious. Far as I’m concerned no other industry is like this to get into, it’s actually retarded.
The manager you talked to should’ve thought about idk maybe offering training for people with no experience that have a degree or certifications, and show interest for cybersecurity. Just an idea 🤷🏻♂️ the demand is going to be wayyy too high soon for the accepted supply from these picky ass employers. And if you’re going to ask for all these requirements don’t call it “entry level” 🙄🗑
promosm ?
I’ll say but I think school is useless. You should start by doing support (helpdesk, desktop support) and get certifications while working (Comptia). 2nd step would be to then get into networking while still getting networking & security certifications (more advanced CISCO certs) and then getting into cybersecurity. It will take time but that’s what I observed all the cyber people did in the company I work for (won’t say the name but one of the largest bank in the world)
This is a good path recommendation! Great alternative to the time and monetary investment of a traditional academic schooling, which can be useless depending on how you approach it.
You say this yet someone with more “experience” and an associates in cyber can’t get a job in help desk cuz they all ask for ridiculous requirements and qualifications for a job I have basically done for my parents for a decade now!? It’s not that easy.
Can an ethical hacker/Pentester become a millionaire? if yes how? what I see are average to good salaries, but that alone doesn't make anyone a multimillionaire
Is you are thinking on be millionaire with cybersec then you most probably are in the wrong industry
first
Hello first commenter!
@@collinsinfosec hello Grant! Nice to meet you... I'm a teenager that really is interested in cyber security and been learning new things everyday! Your content is very helpful. It gives me a better understanding on how the career is going to look when I try to get a job in cyber security.
No helpful tips. Jus recycled talking points that don't work for the majority
alrighty, whatever you say.