Is Cyber Security a Good Career Choice?

Before we get into the ins and outs of building a career in the space, let’s define what cyber security is: defending computers, networks and the data they contain from cyberattacks. Cyber security professionals engage in a never-ending mission to identify vulnerabilities in their information systems and close or fortify these gaps before cybercriminals can exploit them.

Within the broad spectrum of cyber security, areas of focus like analysis, disaster recovery, penetration testing, programming and others each play a role in safeguarding the systems that our interconnected economy depend on. 

There are several reasons why pursuing a cyber security career might be a good fit for your personal and professional goals. Take some time to look into the different branches of this field. You may find that one area of focus piques your interest more than others.

Are you more of a defense and strategy minded person? Or do you prefer to work with the hardware involved in keeping systems safe? The way you go about preparing to pursue a career in this field will depend on what your long-term goals are.

But in general, here are some things that you might want to know:
 

The U.S. Bureau of Labor Statistics (BLS) projects employment for information security analysts to grow 32% from 2022 to 2032, a rate that’s much faster than the average for all occupations. The BLS also projects about 16,800 job openings for this group each year, on average, over the decade.¹ This growth is projected on a national level and local growth will vary by location. This projection is not specific to DeVry University graduates and may include earners at all stages of their careers.

The BLS attributes this impressive growth to the increasing frequency of cyberattacks, the rise of e-commerce and the need to create innovative solutions to prevent hackers from interfering with or stealing critical information from networks. 
 

If you think working in cyber security always requires an on-site work environment, think again. Working from home has become common in many industries over the past few years, and cyber security is no exception. A search of job listings in a range of roles is likely to reveal a large number of positions that are either fully remote or hybrid. This may make the occupation more accessible for those who prefer, or need to, work remotely.
 

If your ultimate goal is to become your own boss, it is possible to establish yourself as an independent contractor in the information security field. You may need to start off working for a company while you build up your skills, earn industry certifications and gain experience. As you become more familiar with the work in the field, you can take on some small paid projects on the side as a freelancer, gradually building your reputation and your portfolio.

Keep in mind that growing your business and your income will require marketing yourself, whether this is through your own website, social media channels, word of mouth from previous clients or through professional networking.
 

Cyber security professionals work for both large and small private sector organizations, such as financial institutions, healthcare systems and e-commerce platforms. They also work in the public sector, for government agencies or public utilities that manage power grids, water systems and other infrastructure.

Government organizations are being increasingly challenged by cyber threats, whether from bad actors seeking to steal intellectual property or cybercriminals intent upon accessing personal identifying information. Industry professionals are also seeing the emergence of what’s been described as advanced persistent threats (APT), with premeditated and targeted attacks using ransomware and other aggressive attack code.

As large organizations and governments become aware of new vulnerabilities and explore how to manage them from both an IT and OT (operational technology) standpoint, more new career opportunities for cyber security specialists may arise. 
 

As noted in job growth projections by the BLS, the need for cyber security professionals is being fueled by our increasing dependence on information systems and the increasing need to safeguard them.

Opportunities to begin and advance your career within the cyber security field are plentiful, with numerous pathways at the entry, mid and advanced levels that often intersect in their scope and areas of responsibility. As you begin to map out your cyber security career path, keep in mind that every organization is different, and roles, responsibilities and advancement opportunities will vary widely from one job posting to another.

Examples of entry-level roles for cyber security professionals include:

As with many other careers, you’ll need to cultivate a variety of technical and workplace skills if you want to position yourself for long-term career growth and satisfaction. But skills for cyber security professionals may require a bit more specialized knowledge and ability, especially as you progress through your career.

If you’re just starting out, it’s important to identify what kinds of core competencies employers in this field will be looking for. You can then make the effort to acquire these skills through education or independent study.

Some technical skills you’ll need might include: 

If you’re curious about how to get into cyber security, you should remember that the first step in any career journey is education. Here at DeVry, we offer a variety of cyber security degree and certificate programs that can be earned 100% online. Coursework in security systems procedures, standards, protocols and policies are taught by experienced faculty who will teach you core cyber skills through hands-on learning experiences.

Explore our Undergraduate Certificate in Cyber Security, our Associate Degree in Cybersecurity and Networking, our Bachelor’s Degree Specialization in Cyber Security Programming and our Bachelor’s Degree in Cybersecurity and Networking programs.

After your education is complete, some steps you can take toward entry-level cyber security jobs include:

The landscape for cyber security careers is remarkably broad, spanning industries like banking and finance, insurance, healthcare, government and information technology. We’ve chosen a few, and included the primary responsibilities associated with each of them. Bear in mind that as you start you search, you may see job descriptions with titles that vary from one employer organization to another.
 

Whether called a cyber security analyst or an information security analyst, this cyber security professional is responsible for identifying and fixing vulnerabilities in computer networks and data systems against cyberattacks. Their responsibilities may include reviewing security systems, setting security protocols and configuring security tools. They may also petition for software and hardware upgrades to enhance safeguards, and investigate security breaches in order to configure countermeasures that will fend off future attacks.
 

The typical duties of a network administrator include maintaining computer networks and system hardware, software, routers and other components, and installing and configuring network equipment to remedy issues or complete updates. The administrator might also train new network users, update virus protections and communicate networking issues to colleagues and management.
 

Keeping sensitive information from being lost, stolen or damaged, cyber security specialists typically run diagnostic tests and analyze data to identify security threats, then construct security measures to safeguard their systems. They also may make recommendations for upgrades to shore up security efforts and assist in developing best practices to help organizations reduce the risk of data theft. They also may write reports explaining the results of testing and the results of security incidents after they’ve occurred. 
 

The specific duties of an information security manager typically include the development and implementation of policies and procedures related to keeping information safe. This may include overseeing cyber security awareness and training, assessing and mitigating security risks and managing security incidents when they occur. This cyber security professional is also typically responsible for making sure these systems are complaint with industry standards, such as the General Data Protection Regulation (GDPR) and the Payment Card Industry Data Security Standard (PCIDSS).
 

Hacking is recognized as the unauthorized entry to, or interference with, a computer or network.  So what is ethical hacking? It’s a ways of launching simulated attacks in order to test an organization’s security defenses and resilience in the event of a real attack. An ethical hacker would launch a sanctioned simulated attack on a system and work with their team to fortify security where it’s needed.
 

Penetration testers are responsible for trying to find weaknesses in a system before cybercriminals can. Their everyday duties include performing security assessments of servers and systems, developing and carrying out penetration tests on them, documenting their findings and providing them to management. They also work to implement any improvements to system safeguards.

Emerging cyber security trends reflect the accelerating pace of technological advancements, making this an exciting and challenging time for the industry. These underscore the realization that cyber security is no longer a discipline assigned strictly to the IT department, but rather a strategic priority that has taken a seat in the board room.

Concerns that are front and center in 2024 include:
 

With its ability to automate repetitive tasks and analyze massive amounts of data, artificial intelligence continues to be a rising influence in cyber security.  As AI increases in sophistication, its predictive abilities are helping nudging security professionals to take on proactive approach to defense rather than a reactive one. 
 

The widespread use of connected smart devices will continue to raise cyber security risks, since each device can be a potential entry point for cybercriminals. Gaining access to one device has the potential to disrupt the entire system. 
 

Remote work comes with cyber security risk, especially if personal devices are utilized. Since these are less likely to have robust security protocols, cybercriminals may have an easier time accessing them. Remote workers often feel as through their home networks are secure, but their devices could pose a significant risk if used to access company data and are inadequately protected. 
 

The convenience and accessibility phones and apps offer consumers are countered by the cyber security challenges they bring. Each mobile app is a potential vulnerability, as they expose your sensitive data and make your phone accessible to hackers. The security of mobile devices like phones or tablets is also a concern for this year. As more people use and rely on them, the more they may be seen as a target.
 

In 2024 and likely beyond, cyber security teams will continue to grapple with a shortage of professionals with adequate training and skills to protect organizations from cyberattacks.

In its 2023 Cybersecurity Workforce Study, ISC2 found that in spite of the global cyber security workforce increasing in size, the skills gaps have also reached new heights. Falling short of the demand, an additional 4 million workers are needed to sufficiently safeguard information systems and assets.

Highlights from the ISC2 study demonstrate the severity of the problem:

If a career in cyber security sounds like it may be right for you, we can help get your journey started.

Our online Undergraduate Certificate in Cyber Security program can help you prepare to pursue a career as a cyber defender with coursework that introduces concepts like how design strategies to protect information, infrastructure and brands from cyberattacks.

This undergraduate certificate program can also help prepare you to pursue industry-relevant cyber security certifications like CompTIA A+, PentTest+ and Network +, and the EC Council’s Certified Ethical Hacker (CEH). This program does not require you to have a previous technical background and can be completed in as little as little as 1 year and 2 months on a minimum schedule, or 1 year and 6 months on a normal one.²