How to best find your specialty in your cybersecurity career

Updated: 6 days ago

When people come to me, it’s usually to ask,

“Where do I start?”.


“What’s the best way to get into cybersecurity?”

My answer is always the same because I realized very early: the benefit of a plan.


Back in 2014, there wasn’t much coverage on cybersecurity. Unlike now (you’ll notice I say this often because I believe this can work to your advantage.) There weren’t many reviews on job duties and people giving their experience.

For me, there was one article that always stuck out. “The dark side of digital forensics.” I can’t remember who the author was, but this was the only resource I could find detailing an “honest” perspective of the field. And it wasn’t created to deter but to inform.

I always advise people to investigate the different areas of cybersecurity. Hopefully, you know the old saying,

“A failure to plan is a plan to fail.”

Well, this is no different. Having a “North star” is better than wandering around aimlessly.


Research the various positions.

There are a few teams that makeup cybersecurity (or Info Security). Peep the infographic below.

It’s up to you to determine which of these is most suitable. But, to add more guidance, here’s an easy way to look at the different teams.

Red team

Offensive Security (The Breakers)

Brief Description:

Behave like threat actors who want to attack and breach their target network.

Some Duties (for example)

  • Ethical hacking

  • Penetration Testing

  • Exploiting vulnerabilities.

Blue Team

Defensive Security (The Defenders)

Brief Description:

This team is responsible for defending its resources against attackers. This team is typically passive, so most of their work remediates (resolving) whatever actions were taken.

Some Duties (for example)

  • Digital Forensics

  • Threat Hunter

  • SOC Analyst

Purple Team

Integrating Defense tactics with offensive results.

Brief Description:

Combines red and blue teams by actively defending resources and continuously attacking them. This team is essential as knowing the opponents’ capabilities allows for better security.

Some Duties (for example)

  • Improve defense capabilities and implement better detections.

  • Improve attack performance and find ways to outmaneuver defenses.

  • Repeat.

Yellow team

Software coders.

Brief Description:

Responsible for developing software securely. (*cough cough* Stares at 90’s coders )

Some Duties (for example)