Key Lessons From Cybersecurity Career Paths

I recorded this video of Tumi Mqedlana during my July visit to South Africa. At that time, she was midway through her program, with quite a bit of training still ahead of her. Fast forward to November 2023, Tumi not only graduated but also secured her first role in cybersecurity within the same month. Yet, what truly captivates me are the invaluable lessons her journey offers. Tumi's adventure is rich with takeaways. Here are the standout lessons: 1. Keep Searching Until You Find What Clicks Tumi dabbled in software development but it didn’t resonate with her. She didn’t stop exploring, though. When she discovered cybersecurity, it was a perfect match. It's a reminder to all of us: keep searching until you find that spark. 2. Patience is a verb. Embrace it as Your Superpower When Tumi found CyberGirls in February 2022, the applications had just closed. Far from being deterred, she used the time wisely by diving into Udemy courses to deepen her cybersecurity knowledge. It’s a powerful lesson in using waiting periods as opportunities for growth. 3. Put Yourself Out There at Industry Events Despite feeling unsure and only being halfway through her CyberGirls training, Tumi stepped up to participate in a hackathon. Such industry events can be golden opportunities to be spotted. Tumi admitted, "I always felt intimidated by such spaces, given my background and level of experience at the time.” Yet, being acknowledged for her skills at the event boosted her confidence, and it could do the same for you. 4. Navigate Minority Challenges with Courage "The CyberGirls learning experience empowered me to find my voice. As a black woman in South Africa's cybersecurity sector, just the act of engaging and feeling like I belong was transformative," Tumi shared. It’s a powerful call to push beyond the fear and find your place, even in the face of doubt. Tumi's story and video might spark other reflections or lessons for you. Feel free to share them in the comments section. Let’s enrich this conversation with our collective insights. 
#cybersecurity #infosec #informationsecurity #cybergirls 

🚨 "You're overqualified for help desk work." That's what Sarah's friend told her when she considered taking a $35k help desk role after getting her cybersecurity degree. Fast forward 8 years... Sarah is now a Principal Security Architect at a Fortune 500 company, earning well into six figures. Her secret? She ignored the advice and took that "lowly" help desk job anyway. Here's what happened during those first two years that changed everything: → She learned how users ACTUALLY behave (spoiler: nothing like the textbooks) → She saw firsthand how systems fail in the real world → She developed pattern recognition from thousands of tickets → She mastered the art of explaining technical issues to non-technical people The breakthrough moment came during her 18th month when she noticed a pattern in password reset requests that led to uncovering a social engineering campaign targeting their organization. That discovery got her promoted to the SOC team. Then to incident response. Then to security architecture. "Every 'glamorous' cybersecurity skill I use today," Sarah told me recently, "has roots in something I learned while resetting passwords and troubleshooting printers." The cybersecurity industry has convinced people that help desk → desktop support → system admin is somehow "beneath" them. But here's the reality: Every CISO, every pen tester, every security consultant worth their salt understands that technology is only as secure as the humans using it. And you can't protect what you don't understand. 💡 The fastest path to cybersecurity isn't around the fundamentals—it's through them. For those already in cybersecurity: What was your "unglamorous" starting point, and how did it shape your expertise today? For those trying to break in: What's holding you back from taking that first IT role?

For those breaking into the cybersecurity industry… This isn’t college anymore. There are no late penalties. No extra credit. No one’s handing out gold stars just for showing up. You’re in a professional field now—one that pays well and moves fast. This world impacts real systems, real people, and has real consequences. Consequently, your work needs to reflect that. I say this not as criticism, but as someone who’s been where you are. What will set you apart from the rest of the pack is knowing the difference between just getting something done, and doing something well. It’s a shift. And it matters. When your name is on a deliverable—whether it’s a report, an email, or a slide deck—it’s a reflection of you. Of your work ethic. Your attention to detail. Your mindset. In this field, few will expect you to know everything. But what they do expect is effort. Clarity. Pride in your work. I’ve reviewed a lot of work from smart, capable people that fell flat simply because it was rushed, unfinished, or because there was simply no effort put in. Typos everywhere. Incomplete work. Poor formatting. No structure. No sense of ownership. If you’re early in your career, here’s what I wish more people told me: - Proofread twice. Especially before sending it to someone senior. - Give your work a second glance—ask yourself, “If someone forwarded this to me with no explanation, would it make sense?” - Communicate clearly if you need more time or aren’t sure—radio silence never looks good. - Attention. To. Detail. I cannot hammer this home enough. Your ability to put together products that require minimal to no edits will push you to the top of the pack immediately. Many understand this. Few execute. As I tell my team - You’re not expected to be perfect. But you are expected to care. Because when people see that you take pride in your work—even as you’re learning—they’ll start trusting you with more. And that’s where the growth happens. So yes, ask questions. Keep learning. But show up like it matters—because it does. This isn’t school anymore. It’s the start of a career you get to shape. And for the managers reading this—be patient with new professionals. Teach the standards clearly, model the behavior consistently, and help them understand the ‘why’ behind quality. That’s leadership too.