January 11, 2023 By Josh Nadeau 4 min read

With the shortage of qualified tech professionals in the cybersecurity industry and increasing demand for trained experts, it can take time to find the right candidate with the necessary skill set. However, while searching for specific technical skill sets, many professionals in other industries may be an excellent fit for transitioning into a cybersecurity team. In fact, considering their unique, specialized skill sets, some roles are a better match than what is traditionally expected of a cybersecurity professional.

This article explores six different types of professionals with the skills to successfully transition into a cybersecurity team and how they can be repurposed appropriately while remaining in their comfort zone.

1. Software engineers

A software engineer is a professional who creates and maintains software applications. They are responsible for designing, developing, testing and debugging software applications.

Why the skill set is a match

Software engineers possess various technical skills, including coding and software development. They also understand the complexities involved in developing a secure application. This makes them well-suited for different types of cybersecurity tasks. As an example, they can be used to create applications that are more resistant to cyber-attacks by introducing security features at the code level.

What additional training do software engineers need?

While software engineers already possess a strong foundation for cybersecurity, they may need additional training in cryptography and network security. They should also be familiar with various cyber threats, such as malware and phishing. Additionally, since software development is constantly evolving, software engineers should be prepared to keep up with the latest trends to remain competitive.

2. Network architects

Network architects are responsible for designing, planning and implementing computer networks. They understand the complexities of network security and how to keep data safe from external threats.

Why the skill set is a match

Network architects possess a strong knowledge of networking technologies and are proficient in setting up secure networks. While not all security roles require a deep technical understanding, network architects are well-suited to design secure networks and implement protection measures. They can also review existing systems for vulnerabilities and recommend solutions to mitigate risks.

What additional training do network architects need?

Although security is typically hardwired into the DNA of network architects, they should understand the various cyber threats that exist today. They should also be familiar with emerging technologies and techniques related to cybersecurity, such as artificial intelligence (AI) and machine learning (ML). Another important skill for network architects is identifying and differentiating between legitimate and malicious traffic signals.

3. IT support specialists

IT support specialists are responsible for troubleshooting and resolving technical issues related to computers and other electronic devices. They typically have a broad knowledge of different hardware and software systems.

Why the skill set is a match

IT support specialists possess strong analytical skills, allowing them to quickly identify problems and devise solutions. Their ability to think critically makes them well-suited to investigate security incidents and hunt for malicious actors. Additionally, they are knowledgeable in different hardware and software systems, which is essential in understanding the implications of cyber threats.

What additional training do IT support specialists need?

IT support specialists should understand the various cyber threats and how to respond effectively. They should also be knowledgeable in risk assessment techniques and security architectures, such as access control protocols and identity management solutions. Most IT support teams subscribe to a broad understanding of security risks; however, additional training may be necessary for more specialized positions.

4. AI developers

AI developers are responsible for developing applications that leverage AI and ML technologies. They possess a strong knowledge of data engineering and programming languages such as Python, C++ and Java.

Why the skill set is a match

AI developers understand the power of machine-learning algorithms to detect patterns in large datasets. As a result, they can be used to detect and respond to security threats in real-time. AI developers can use specialized skills to create and maintain powerful penetration testing tools and build AI-assisted security solutions.

What additional training do AI developers need?

Although AI developers possess strong programming knowledge, they may need to become more familiar with various cyber threats. They should understand different attack surfaces and concepts, such as malware analysis and intrusion detection systems. Additionally, they should be knowledgeable in ethical hacking principles and network security protocols to develop secure applications.

5. Cloud specialists

Cloud specialists are responsible for managing cloud-based applications and infrastructure. They typically possess a strong knowledge of cloud platforms and technologies, such as Amazon Web Services (AWS), Microsoft Azure and IBM Cloud. Cloud specialists also understand storage technologies, such as relational databases and big data solutions.

Why the skill set is a match

Cloud specialists are familiar with the powerful security services offered by cloud providers, such as identity and access management (IAM). They can leverage these services to ensure that only authorized personnel can access sensitive information stored in the cloud. Additionally, cloud specialists understand the various security risks associated with cloud technologies and can provide valuable insights into how to mitigate them.

What additional training do cloud specialists need?

Cloud specialists have a comprehensive understanding of different cloud services and technologies; however, when needing to adapt to strictly on-premise security infrastructure, they may need to adjust their skill set. They should become knowledgeable in on-premise security solutions, such as host-based firewalls and endpoint protection systems. Additionally, they should understand the different types of cyber threats and how to design secure architectures within an organization and with external parties.

6. Data analysts

Data analysts are responsible for analyzing large amounts of data and providing insights into business processes. They possess strong knowledge in areas such as statistical analysis, predictive modeling and machine learning algorithms.

Why the skill set is a match

Data analysts understand how to identify patterns in datasets that may not be immediately visible to the human eye. They can leverage these skills to detect and respond to advanced cyber threats such as zero-day exploits or insider threats. Data analysts can also develop predictive models that help organizations anticipate future security risks and take preventive measures accordingly.

What additional training do data analysts need?

Data analysts may need additional training in areas such as data privacy regulations and compliance standards. They should understand different security tools and processes to ensure that data is securely stored, transmitted and processed. Additionally, they need to have a strong understanding of threat models and attack vectors to detect malicious activity as early as possible.

The demand for new cybersecurity workers remains high

Overall, transitioning from various roles, such as AI developers, cloud specialists or data analysts, into the field of cybersecurity is possible. With the right training and expertise, professionals from these backgrounds can become invaluable cybersecurity team members. As attackers become more sophisticated, organizations need individuals with a strong combination of technical knowledge and analytical skills to stay ahead of the curve. Organizations can build and grow their cybersecurity teams without suffering from a shortage of highly specialized professionals.

More from CISO

X-Force Threat Intelligence Index 2024 reveals stolen credentials as top risk, with AI attacks on the horizon

4 min read - Every year, IBM X-Force analysts assess the data collected across all our security disciplines to create the IBM X-Force Threat Intelligence Index, our annual report that plots changes in the cyber threat landscape to reveal trends and help clients proactively put security measures in place. Among the many noteworthy findings in the 2024 edition of the X-Force report, three major trends stand out that we’re advising security professionals and CISOs to observe: A sharp increase in abuse of valid accounts…

Boardroom cyber expertise comes under scrutiny

3 min read - Why are companies concerned about cybersecurity? Some of the main drivers are data protection, compliance, risk management and ensuring business continuity. None of these are minor issues. Then why do board members frequently keep their distance when it comes to cyber concerns?A report released last year showed that just 5% of CISOs reported directly to the CEO. This was actually down from 8% in 2022 and 11% in 2021. But even if board members don’t want to get too close…

The CISO’s guide to accelerating quantum-safe readiness

3 min read - Quantum computing presents both opportunities and challenges for the modern enterprise. While quantum computers are expected to help solve some of the world’s most complex problems, they also pose a risk to traditional cryptographic systems, particularly public-key encryption. To ensure their organization’s data remains secure now and in the future, chief information security officers (CISOs) should educate themselves about quantum computing, proactively address the coming quantum risks to cybersecurity and work to establish cryptographic agility in their enterprise.A future cryptographically…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today