Gordon Pelosse is senior vice president, employer engagement at CompTIA. Unlocking the potential in millions of under and unemployed.
getty
As technology continues to advance, cybersecurity has become a critical concern for organizations across all industries. Cybersecurity specialists are tasked with protecting an organization's digital assets from a myriad of threats. To do so effectively, they must have a deep understanding of the IT infrastructure and networking principles that underpin these assets. This includes knowledge of servers, storage systems, cloud services, network protocols and data transmission.
Due to the detailed requirements and the combination of education and hands-on experience needed, many HR leaders find recruiting for cybersecurity roles challenging. It's common for hiring managers to default to a formal degree requirement as a proxy for skill, but this can be misleading.
Understanding the different ways that cybersecurity specialists can obtain their foundational skills is paramount. This is especially important because professionals in related fields can transition into security roles through a number of pathways. So it's crucial to validate whether a candidate possesses the necessary skills, rather than making hiring decisions based on what their college major was.
If your organization is in need of cybersecurity professionals, here are five pathways you should take into account.
Pathway 1: Higher Education Alternative
Associate degrees offer a structured approach to learning that combines theoretical knowledge with practical experience. This pathway can be particularly appealing to those who value a traditional academic setting, and the comprehensive education it offers, but wish to avoid the time and financial commitment of a four-year degree. Cybersecurity candidates with associate degrees can often bring a disciplined approach to problem-solving and project management to the role.
Pathway 2: Vocational Training And Certifications
Pursuing a certificate in relevant tech skill sets, such as network design or troubleshooting, provides a direct route to a career in cybersecurity. Participants can learn things like network design, implementation and troubleshooting; security concepts and best practices; and threat analysis, risk management and incident response.
Certifications can be a reliable indicator of someone's commitment to professional development and their readiness to take on cybersecurity challenges. As most reputable programs are updated regularly to keep up with the ever-changing technology and evolving threats, a certified professional is more than likely well equipped to solve problems that arise.
You should also recognize the value of vendor-specific certifications, which provide expertise in the relevant technologies that an organization uses. For example, a candidate with a Cisco Certified CyberOps Associate certification would be able to handle security in a Cisco-based network environment.
Pathway 3: Self-Directed Learning And Experience
Being self-taught is a hallmark of many successful cybersecurity professionals. Individuals who have taken the initiative to learn about infrastructure and networking through online courses, tutorials and hands-on projects demonstrate a proactive approach to their professional growth. These candidates may not have formal degrees in cybersecurity, but their self-taught skills or on-the-job training and experience can be just as valuable.
Look for evidence of self-directed learning in a candidate's background, such as participation in online forums, attendance at industry webinars or completion of online courses related to infrastructure and networking. Then, when interviewing self-directed learners, you can include technical assessments that allow them to demonstrate their knowledge and experience. These assessments can range from theoretical questions about network protocols to practical exercises involving the configuration of firewalls or intrusion detection systems.
Pathway 4: Boot Camps And Short Courses
Accelerated learning environments are for individuals looking to develop their infrastructure and networking skills quickly. Cybersecurity boot camp programs are intensive and focused, often including hands-on labs and real-world simulations that prepare participants for the challenges they'll face on the job. Short courses can provide specialized training in areas like network security, ethical hacking or cloud security. They're often designed to supplement existing knowledge and can be an excellent way for professionals with infrastructure backgrounds to pivot into cybersecurity.
Graduates from these programs are valuable employees who arrive equipped with up-to-date knowledge and practical experience. As a hiring manager, of course, it's important to evaluate the quality and relevance of the accelerated program they attended, as well as the depth of the curriculum. This can ensure you're hiring someone who fits the needs of your organization's cybersecurity function.
Pathway 5: Work Experience
Professionals with experience in system administration, network engineering or infrastructure roles have a significant advantage when transitioning to cybersecurity roles. Their practical knowledge of IT systems ensures they understand how to maintain, troubleshoot and optimize network and system performance. These skills are directly transferable to securing those same systems.
As an HR manager, you should recognize the potential to fast-track these individuals into cybersecurity careers. Their existing knowledge allows them to bypass years of foundational training, focusing instead on acquiring specific security skills.
Networking is a powerful tool when looking to recruit experienced professionals with cybersecurity talent. Professional associations, industry conferences and online communities are excellent sources for connecting with candidates who may be seeking new opportunities.
Conclusion
Recruiting cybersecurity talent requires an appreciation for the diverse pathways that candidates may take to gain the necessary skills. Candidates with experience in system administration, network engineering or infrastructure roles may find themselves well positioned to transition into cybersecurity. Sometimes, the talent is right under your nose, and with some upskilling and on-the-job experience, you can fast-track existing employees to cybersecurity roles. By recognizing transferable skills or nontraditional education, you can tap into a rich pool of cybersecurity talent that is both technically proficient and security-conscious.
Forbes Human Resources Council is an invitation-only organization for HR executives across all industries. Do I qualify?
