Breaking Into Cybersecurity: What I Wish I Knew
RW
Breaking Into Cybersecurity: What I Wish I Knew
By Ryan Alexander Wainz | Cybersecurity & AI Advocate
Hey everyone, welcome back to the blog! Today I want to step away from the technical side and talk about something more personal: what it’s really like to break into cybersecurity.
If you’re reading this and wondering whether you need to be a hacker, a genius, or have a decade of IT experience before you can even apply—take a deep breath. You don’t. What you do need is curiosity, persistence, and a willingness to keep learning.
Cybersecurity is constantly evolving. Nobody knows it all (and if they tell you they do, they’re lying). What matters most is developing a mindset of growth, resilience, and communication.
What Surprised Me Early On
🗣️ Communication Matters More Than You Think
When I first started, I thought cybersecurity was all about the tools, the configs, and the logs. Don’t get me wrong—those matter. But I quickly learned that much of the job is explaining those tools to others:
End users: Why MFA or a password policy is in place
Leadership: Why a tool is necessary for the business
Non-technical teams: Why any of this matters
The skill to translate technical risk into business value is one of the most underrated, but powerful, abilities you can develop. People already know cyber threats are real—they see it on the news every week. Your job is to calmly explain: this could happen to us, and here’s why we need to be prepared.
🧠 You’ll Never Know Everything (And That’s OK)
One of the first lessons I learned was the Dunning-Kruger effect. In short: the less you know, the more confident you feel. But as you gain real experience, you realize just how massive this field really is.
That’s not a bad thing—it means you’ll never be bored. It also means you’ll always bring a unique expertise to your team or industry. Stay curious, stay humble, and keep sharpening your “cyber brain”—your ability to learn and adapt quickly.
🎓 Certifications vs. Hands-On Skills
Certifications matter. They prove you have knowledge in a specific area and often help you land interviews. But hands-on skills are just as important—if not more.
If you’re going the college route, look closely at the curriculum. Does it actually align with the career you want? Feel free to message me—I’d be happy to review a program with you and give feedback.
At the same time, don’t sleep on certifications. They show hiring managers you’ve put in the effort to learn. Just balance them with practice.
My Top Tips for Breaking In
1️⃣ Learn from Free Tools and Platforms
YouTube, Wireshark, TryHackMe, HackTheBox—even blogs like this one. There’s so much out there. Don’t let money be the reason you don’t start; there’s an abundance of free resources online.
2️⃣ Practice Writing and Explaining
This is huge. Write reports. Explain threats in plain English. Practice telling a friend what a phishing email is without using jargon. If you can talk to non-technical people confidently, you’re already ahead of the curve. It will also help in interviews, since hiring managers want to see you’re not only technical.
3️⃣ Get Out and Network
Attend conferences, meetups, and local cybersecurity groups. You’ll meet people from every corner of the industry—from healthcare security to cloud defense—and they’ll share perspectives you won’t get anywhere else.
4️⃣ Build Your LinkedIn Presence
Follow security leaders, connect with peers, and yes—talk to salespeople. Hearing their pitches isn’t just about buying tools; it’s a way to learn what’s new in the market and where the industry is heading.
Mistakes I Made (So You Don’t Have To)
Thinking I had to know everything before applying to jobs
Avoiding networking because I thought I wasn’t “ready” (just go—you are!)
Focusing too much on technical skills and not enough on communication
Don’t fall into the same traps. The truth is, everyone’s path is different—and that’s what makes this field so exciting.
Final Words: There’s Room for Everyone in Cybersecurity
Cybersecurity isn’t one-size-fits-all. Some people come from IT, some from the military, and some from completely unrelated fields. Your path will be your own.
I’d love to hear how you got into the field—or, if you’re trying to break in, what challenges you’re facing. Drop a comment or DM me anytime. I’d be happy to answer questions or even do a Q&A post in the future.
Remember: you don’t need to be a genius—you just need to stay curious, keep learning, and never stop growing. The field needs more people like you.
Until next time,
Ryan Alexander Wainz
Cybersecurity Professional | AI Enthusiast | Advocate for Responsible AI