In the era of technology development, cybersecurity is on a level with physical security, as it allows to protect personal data from leaks and national security, business and critical infrastructure from cyberattacks. In the crisis year of 2022, the number of leaks increased significantly: in the summer, the Group-IB Threat Intelligence system recorded a double increase in the number of leaked databases compared to the spring. Expert Sergey Gerasimov spoke about the importance of the work of a cybersecurity specialist and the development of the profession. He has been working in this field for more than 10 years and now leads the RedTeam of Solidlab.
How do you, as an expert with extensive experience, see the importance of cybersecurity for society?
Cybersecurity exists to protect personal data, such as personal and financial data and medical records. It is also an important factor for the protection of confidential information used by national governments as well as military and intelligence services. In addition, one need to understand that now most companies use electronic systems and technologies to process payments and communicate with customers. Cybersecurity in this case is necessary to protect against cyberattacks that can lead to the loss of confidential data, disruption of business processes and damage to the reputation of a company.
What kind of education do you need to work in cybersecurity?
In my opinion, a specialized education is not necessary to work in cybersecurity, although it can certainly be useful. The fact is that the main requirements for a cybersecurity specialist are skills and experience in this field, as well as the ability to think logically. In addition, of course, it is desirable to have the appropriate certificates: OSCP, CPTS, CISSP or CEH.
What should a person who wants to pursue a career in cybersecurity start with?
First you need to learn the basics of information technology and security in order to understand how computers and networks work, and what vulnerabilities and protection methods exist. Then it is advisable to take online courses, without forgetting about reading specialized literature. The next important step is to gain a unique experience through internships or work as a system administrator or developer.
What difficulties can you highlight in mastering this profession?
A career in cybersecurity can be interesting and promising for people who are interested in IT and information security. However, there are pitfalls and peculiarities in studying the profession that can become obstacles when trying to connect their lives with cybersecurity. These include, for example, the difficulty in studying information, since this field of activity implies knowledge of special terms, concepts and methods that may be incomprehensible at an early stage of study, as well as working with a large amount of information. The difficulties also include the need for constant training and self-improvement, the complexity of the tasks performed, responsibility for the final result and the danger of mistakes. Miscalculations and inaccuracies can have serious consequences related to the leakage of confidential information or disruption of the system.
What career growth can there be in cybersecurity?
Career development in the field of cybersecurity can include two areas: technical and managerial. The technical direction is a path for those who want to work with the technical side of cybersecurity. In this case, one can advance from a cybersecurity specialist to an engineer, and then to a cybersecurity architect. The managerial direction is for those who want to work in a managerial and coordinating role. Here it is possible to advance from a manager to a chief cybersecurity specialist. Both directions are quite promising, so the choice should be made only on the basis of what a person wants to be responsible for: for the development and implementation of security systems or for coordinating work and developing a strategy.
What key skills do you think a person needs to have in order to gain success?
In order to succeed in the field of cybersecurity, it is necessary to have an understanding of the basic principles of information systems, to have the ability to communicate effectively with your colleagues and clients. It is also extremely important to be able to work in a team and be ready for continuous improvement of knowledge and take great responsibility. People who have an interest in the profession, an understanding of the basic principles of information security and ready for continuous development and quick decision-making have all the chance to succeed.
* This is a contributed article and this content does not necessarily represent the views of techtimes.com
