Cyber Security Career Path

by | 2024 Apr 11 | Cyber Security | 0 comments

Starting your journey into the vast and evolving field of cybersecurity is not only about choosing a career path but also ensuring that your education and training are grounded in excellence and recognized by leading authorities in the field. It’s imperative to steer clear of pitfalls and ensure your efforts lead you toward a promising career rather than a dead end. This post aims to guide you through the essentials of building a solid foundation in cybersecurity, emphasizing the importance of accredited education and certification.

Why Does Accreditation Matter?

The National Security Agency (NSA), a key player in national defense, oversees the “Centers of Academic Excellence” (CAE) programs. These programs are designed to recognize and certify academic institutions that excel in various cybersecurity disciplines. The significance of choosing a CAE-certified institution cannot be overstated, as it ensures your education meets the high standards set by the NSA for cybersecurity training.

There are three primary CAE designations:

  1. CAE-CD (Cyber Defense): This designation is for institutions offering comprehensive cybersecurity degrees and certificates at various levels, ensuring a broad understanding of cyber defense mechanisms and strategies.
  2. CAE-R (Cyber Research): Targeted at research-focused institutions, this designation highlights schools that contribute significantly to the field of cybersecurity through advanced research, catering to those interested in pushing the boundaries of cyber knowledge.
  3. CAE-CO (Cyber Operations): A designation for programs deeply rooted in technical disciplines like computer science and engineering, emphasizing hands-on applications and labs. It’s tailored for those seeking to dive deep into the technical aspects of cybersecurity.

By choosing a CAE-certified institution, you’re ensuring your education is recognized, respected, and valued by employers in the cybersecurity sector. To verify if an institution is CAE-certified, you can visit the CAE Community map.

If you want to learn more about what these programs mean, follow this link: https://public.cyber.mil/ncae-c/documents-library/

Where to Start Your Cybersecurity Journey

There is really two sides to cyber security. You can get into cyber defense or cyber offense. I will do my best to divide the rest of this page and the material based on these two categories:

Cyber Defense

Cyber Offense

Hands-On Training

Practical experience is invaluable in cybersecurity. Engaging in hands-on training through labs, internships, and practical exercises is crucial. Such experiences not only solidify your understanding of theoretical concepts but also prepare you for real-world challenges.

Certifications

Certifications play a pivotal role in your cybersecurity career path, serving as benchmarks of your skills and knowledge. Here are a couple of essential certifications to consider:

  • CEH (Certified Ethical Hacker): Focuses on offensive security through ethical hacking techniques. It’s designed to test your ability to find vulnerabilities in systems, a crucial skill in cybersecurity defense.

The Certified Ethical Hacker (CEH) is a well-recognized certification offered by the EC-Council that focuses on teaching professionals to think and act like hackers (but ethically) in order to better secure their organizations against malicious breaches. Here’s an overview of the costs, requirements, and other details associated with obtaining and maintaining the CEH certification:

CEH Exam Cost

  • Exam Fee: The cost to take the CEH exam is typically around $1,199 USD. This fee can vary slightly depending on the country and the mode of examination.

Additional Costs

  • Training Costs: While training is not mandatory if you can demonstrate at least two years of information security experience, many candidates opt for official training. The cost of official training varies depending on the training center and format. It can range from $2,500 to $3,500, which often includes the exam voucher.
  • Self-Study Materials: If you decide to prepare on your own, costs will include study guides, practice exams, and other materials, which can total several hundred dollars.

Annual Membership and Maintenance Fees

  • Membership Fee: The EC-Council charges an application fee of $100 USD for those who do not take their official training course.
  • Annual Maintenance Fee: Once certified, you must pay an annual membership fee of $80 USD to maintain your certification status.

Continuing Education Requirements

  • CPE Credits: To maintain the CEH certification, you are required to earn 120 Continuing Professional Education (CPE) credits over a three-year period.
  • Types of CPEs: CPE credits can be earned through various activities such as attending webinars, conferences, workshops, writing research papers, contributions to the cybersecurity field, or completing other relevant training.
  • Reporting CPEs: CPE activities must be reported to the EC-Council through their Aspen portal to ensure your certification remains active.

Retake Costs

  • Retake Fee: If you fail the CEH exam and need to retake it, you will need to pay the exam fee again, potentially without needing to pay for additional training if you feel it’s unnecessary.

Benefits of CEH Certification

Achieving the CEH certification provides cybersecurity professionals with the skills necessary to identify vulnerabilities and weaknesses in the same manner that a malicious hacker would, but in a lawful and legitimate manner. This capability is highly valued in cybersecurity roles, particularly in positions that require defensive strategies against active threats. The certification can enhance job prospects, potentially lead to higher salaries, and is often a stepping stone to more advanced roles or specialized areas within cybersecurity.

Maintaining the CEH certification not only keeps your skills up-to-date but also ensures continuous improvement and learning in the fast-evolving field of cybersecurity.

  • CISSP (Certified Information Systems Security Professional): A more advanced certification, emphasizing a holistic approach to cybersecurity from a managerial standpoint. It’s ideal for those aiming for leadership positions in security.

The Certified Information Systems Security Professional (CISSP) certification, governed by (ISC)², is highly regarded in the field of information security. Gaining this credential can signify a high level of competence and commitment, but it comes with various costs and requirements. Here’s a breakdown:

CISSP Exam Cost

  • Exam Fee: The CISSP exam costs approximately $749 USD. This fee may vary slightly depending on your location and the specific testing center.

Annual Maintenance Fees

  • (ISC)² Membership Fee: Once you pass the CISSP exam and become certified, you are required to pay an annual maintenance fee (AMF) to maintain your certification. The AMF for CISSP is $125 USD per year.

Continuing Professional Education (CPE) Requirements

  • CPE Credits: To maintain the CISSP certification, you must earn and submit a total of 120 Continuing Professional Education (CPE) credits every three years.
  • Types of CPEs: CPE credits can be earned through various professional activities, including attending conferences, workshops, training sessions, webinars, or even self-study. (ISC)² also recognizes contributions to the field, such as publishing articles, books, or giving presentations, as valid CPE activities.
  • Reporting CPEs: You are required to log these activities through the (ISC)² website to keep your certification active.

Additional Costs

  • Study Materials and Courses: The cost for CISSP study materials and preparation courses can vary widely. Self-study materials such as books and practice exams might cost a few hundred dollars, whereas formal training courses can range from $2,000 to $5,000 or more, depending on the provider and format (online vs. in-person).
  • Retake Fees: If you need to retake the CISSP exam, you will have to pay the full exam fee each time.

Benefits of CISSP Certification

Despite these costs, obtaining and maintaining a CISSP certification can significantly boost your career. It not only enhances your credibility and marketability but also potentially leads to higher salaries and more advanced career opportunities in the field of information security. The investment in CISSP certification is often seen as worthwhile for the professional advancement it supports.

Staying compliant with these requirements ensures that your skills and knowledge remain current in a rapidly evolving field, keeping you competitive in the job market.

Degrees

Pursuing a degree in cybersecurity or a related field from a CAE-certified institution provides a strong foundation. Whether you’re starting with an associate’s degree or aiming for a bachelor’s or beyond, make sure the program offers a comprehensive curriculum that covers the theoretical and practical aspects of cybersecurity.

Bachelor and/or Master: I’m biased as I attended University of Maryland Global Campus, but I would recommend them for a bachelors or a masters degree and it is completely online, affordable, and very military friendly. www.umgc.edu. I chose this school after looking at many programs myself. So hopefully my time spent will save you time. The masters will run you about $25k.

Doctorate Level

This is a decent link to an article showing programs out there and pricing.

Dakota State University, has a two programs in cyber security. one in cyber defense. The doctorate will run you about $36k.

Dakota State University, has a two programs in cyber security. one in cyber operations. The doctorate will run you about $36k.

Now Get to Work…

Embarking on a cybersecurity career is a commitment to lifelong learning. The field constantly evolves, with new threats and technologies emerging regularly. Staying updated through continuous education, attending workshops, and engaging with the cybersecurity community are essential steps in ensuring your skills remain relevant and sharp.

In conclusion, starting your cybersecurity career on the right foot means choosing the right education and certifications that are recognized and respected within the industry. By following this guide, you’re not just preparing for a job in cybersecurity; you’re setting the stage for a fulfilling career dedicated to safeguarding the digital world.

Resources:

Have any comments, resources, suggestions, or ideas to improve this post? Please let me know below.