Navigating the Cybersecurity Landscape: How to Focus, Learn, and Break Through Without Overwhelm

?? When I was breaking into the cybersecurity field, I didn't have a mentor to walk me through what I should focus on or what certificates would help me break into the field when I was going to do my career transition from the military. It's easy to feel overwhelmed by all the certificates companies are releasing and the online courses you will be exploded with from people not only trying to make money off you but wanting to assist you make a career transition.

Pick One Thing And Stick With It But...

?? There is a reason that I put "but" after that statement: you will end up exposing yourself to new technology stacks. For example, when I was learning cybersecurity, I started with IOS development, understanding that I wanted to learn mobile security. And i was learning IOS development for almost two years until I changed tracks and decided I wanted to learn programming in general.

??Or you decide you want to learn blue team defense and then realize after a month that you want to learn Red team. This happens, and I made a series of different learning decisions. Looking back, all these different learning directions I took when wanting to break into the cybersecurity field helped me pick out what I like about the field.

Learn What You Find Yourself Being More Passionate About

?? Follow your passion. As I navigated through different learning paths, I found myself drawn to mobile development and the swift programming language. My research into mobile security procedures for IOS and Android further fueled my passion. This was my niche, and I dedicated two years to mastering it.

?? If you find yourself thinking about one topic more, or maybe you want to learn new aspects about that topic compared to other cybersecurity domains. Then, that is your niche, and you should focus on that topic! Become good at it, and once you become a master at it, meaning you can speak on it comfortably, then move into something new after! I was in mobile security and development for almost two years before I moved to database security.

What Courses Do I Take?

?? When I was getting into mobile security, I would watch udemy courses, and I would take notes of the content I learned. Afterward, I would write content and share it online on Instagram at the time. I also purchased books, so on my off time, when I had a chance, I would read a few books on IOS security, and I would do the same thing and take notes and create content.

?? I've taken some LinkedIn learning courses and tried Code Academy, Coursera, and so much more. The truth is none of these courses will help you as much as you are willing to get out of it. You can pay for every subscription and learning material in the world.

?? And realize none of it taught you nothing. And sure, it can give you a certificate that looks nice on your LinkedIn. But it is when you become passionate about the subject that all you want to do is share it with family and friends, and that real learning comes from and that stands out more than a certificate. You can become a Software developer just by watching YouTube videos, but what you consume and your rate of consistency will make a big difference compared to someone who pays for a subscription to get nothing out of it or lacks consistency.

Dont Make Yourself Overwhelmed

?? If you read that paragraph correctly, like I said, there is no magic course that will allow you to break into the field. The reality is that you don't have to take any courses, but how you consume knowledge from, let's say, books or YouTube videos. And consistency in how you engrain that knowledge and how you present it.

?? For example, let's say you share it as video content on Instagram or written text on LinkedIn. This is where the knowledge starts to be written in your memory. But doing all this will feel like something other than work because if this is your passion or niche, then this will be more exciting than dreading depressing labor work.

?? You should not overwhelm yourself because I remember learning about IOS development. I would buy all these subscriptions thinking this would teach me to be a solid IOS developer or teach me enough to understand the software side of security. But it did nothing. I retained a lot of my knowledge from reading one book on swift programming language and one Udemy course on mobile security and Objective C. That's it.

?? Once in a while, I would switch the sources of where I got the knowledge, but I grew out of the phase of being overwhelmed, and learning became a habit for me. This allowed me to learn IOS development enough when I got interviewed, and the hiring manager asked me if I knew how to program. I could talk forever about IOS development and how it correlated with cybersecurity, everything from reactive programming, Combine Framework, SwiftUI, UIKIT, and Swift Data. And how secure coding was important when developing IOS applications and how cybersecurity is in-depth with software development! That's how my first interview went with my part-time job as an Information Assurance Technician!

Knowledge Is Power

?? My point is that knowledge is everywhere. You could probably break into the cybersecurity field without any certificates or degrees. So much knowledge and resources are out there, making it easier to break into the field. You just don't need a certificate or piece of paper to prove you are good at something because you took an online course.

?? Trust me it's good to have certificates, but you don't need them to prove anything. You can watch YouTube videos, retain and share knowledge online, and create a project based on that knowledge, and you don't have to pay 30 $ a month for anything. But it is all a matter of building Consistency, Discipline, and a rate at which you can consume knowledge before you need to reset. And how you retain that knowledge.

??When I was in the Marine Corps, I never went to my C school, which certified me to be a Data Analyst, System administrator, and Database administrator. I was just a logs and records clerk with some technology exposure. However, during my off time, I would learn in-depth about the database's underlying technology.

??I crossed trained with the system administrators and they taught me how manage the database and system during my free time. I knew more than most of these so-called "Data Analysts" who attended our C school. When I presented my knowledge and told them that I wanted to break into cybersecurity or become a data analyst, maybe when I got out of the Marine Corps, They would laugh in my face and tell me I don't have my C school certificate to prove I am data analyst or had the knowledge to call myself data analyst.

?? Jokes on them now. People like those who value piece paper rather than raw knowledge need to understand the power of learning. Piece paper only works if you learn something from it. I could do it with my eyes closed if I wanted to become a data analyst. I took the time to learn more about their job rather than rely on a certificate.

You have so many options, but pick what's right for you! I hope this helps someone through their cybersecurity journey and career transition. Feel free to reach out if you need a mentor or someone to help you along your journey.