Kiberxavfsizlik bo'yicha boshlang'ich darajadagi ishni qanday olish mumkin

Ushbu yozuv kiberxavfsizlik lavozimini qidirayotgan do'stimga javob sifatida yozilgan. Bugungi kunda bu keng tarqalgan muammo ekanligini hisobga olgan holda, Izoh qoldirish o‘rniga post yozishga qaror qildim.

Turli manbalardan olingan statistik ma'lumotlar shuni ko‘rsatadiki kiberxavfsizlik sohalarida katta farq mavjud, millionlab kiberxavfsizlik ish o‘rinlari yangi iste'dodlarni kutmoqda. Boot kempinglar ko‘pincha o‘z mahsulotlarini reklama qilish uchun bu raqamlarni ishlatadi. Garchi shunday farq mavjud bo‘lishi mumkin bo‘lsa-da, iste'dod yetishmovchiligi odatda umumiy nomzodlar o‘rniga maxsus rollarda eng aniq ko‘rinadi, ular kam tajribaga ega boshlang‘ich lavozimlar uchun ariza berishadi.

Ko‘plab nomzodlar kiberxavfsizlik ish o‘rinlariga murojaat qilganda javob olishmaydi, garchi mavjud bo‘lgan ish imkoniyatlari millionlab bo‘lsa ham. Ba'zilar fikr qilishi mumkin, ular yetarli darajada yaxshi emas yoki qaytarib qo‘ng‘iroq olmamagani uchun ularda nimadir noto‘g‘ri deb o‘ylashlari mumkin. Ammo, in many cases their applications are simply not reviewed.

If you are looking to enter cybersecurity, know that you are aiming at one of the more lucrative fields in technology and fierce competition typically awaits entry level positions at well-known companies. Masalan, if you apply to reputable Fortune 500 companies for an entry-level role, each job opening might attract anywhere from 50 to 200 applications or even more. At this level even if you are highly capable and fully qualified, you might not be noticed.

Here are some key points you should consider before applying for these roles:

1. Be mindful of the location of your job search. The region where you reside may not have the largest cybersecurity job market. In contrast, areas such as the DMV (DC, Maryland, Virginia) kiberxavfsizlik sohasida eng ko'p ish o'rinlari bo'ladi. Agar hududingizda yetarli ish o'rinlari bo'lmasa, ish topish imkoniyatingiz kamayadi.

2. Viza homiyligi cheklangan. Ko'pchilik kompaniyalar viza homiyligini taqdim etmaydi. Agar sizning ismingiz xorijiy eshitilayotgan bo'lsa (men kabi) va homiylik talab qilinsa, imkoniyatlaringiz yanada cheklangan bo'lishi mumkin. Aksincha, agar homiylikka ehtiyoj bo'lmasa, rezyumengizda immigratsiya maqomini iloji boricha aniq ko'rsatishni o'ylab ko'ring. Men shaxsan fuqaroligim haqida bir necha bor so'raldim, garchi men aniq AQSh ekanligimni aytsam ham. fuqarosi, ba'zi nomzodlar o'z maqomini noto'g'ri ko'rsatib, keyin homiylik kerakligini da'vo qilishlarini anglatadi. Immigratsiya yoki fuqarolik maqomingiz haqida juda aniq bo'ling, chunki homiylik olish oson ish emas.

3. Watch out for fake job postings. Out of every 10 online job postings on platforms such as LinkedIn, around 4 may be fake, that is the jobs do not actually exist. You might apply for a posting for which you are fully qualified and receive no response, leaving you to wonder why you weren’t noticed when in fact the job was never real.

4. Many roles are not publicly advertised. For every 10 jobs posted online, there could be as many as 40 positions that are never publicly advertised. These opportunities are typically filled through networking or local channels. Look up local businesses in your area that hire for your role, reach out to them or check their websites. You might also consult lists like the Russell 2000 or Fortune 500 and leveraging AI tools may help you uncover positions that aren’t listed on LinkedIn.

5. Sertifikatlar muhim, lekin faqat to'g'ri sertifikatlar bo'lsa. Menda bir do'st bor, u odatda avval sertifikatlarni olishga intiladi, so'ng ularning samaradorligidan norozilik bildiradi. Qaysi sertifikatlar HR tomonidan qadrlanishini aniqlash va faqat ularni olish muhim, shunchaki sertifikat to'plash va HR qiziqmayotganidan norozi bo'lish o'rniga. Eng yaxshi malaka ham agar ish beruvchilar uni qidirmasa muhim bo'lmaydi. Sizda mavjud yoki oladigan sertifikatlar eng talabgir bo'lmasligi mumkin. Murjaat qiling bu havola va o'z shtatingizni tanlang, bu har bir shtatda talab qilingan sertifikat bo'yicha ish o'rinlarini ko'rsatadi. Masalan, Misuri shtatida, barcha 30 SANS sertifikatlari birgalikda taxminan hisobga olinadi 500 ish o'rinlari, CISSP sertifikati esa yolg'iz mavjud 1,200 ish o'rinlari, Security+ esa taxminan undan keyin keladi 1,100.

6. Qarshilikka e'tibor bering. Siyosiy keskinlik, ayniqsa nozik sohalarda, ba'zi mamlakatlardagi shaxslarga nisbatan chuqur ishonchsizlik va noto'g'ri munosabat hissi mavjud. Agar siz ushbu mamlakatlardan biridan bo'lsangiz, profilingizdan xorijiy ma'lumotingiz yoki tajribangizga havolalarni olib tashlashni o'ylab ko'ring, yakuniy qaror sizniki bo'lsa-da. Masalan, agar siz farmatsevtika kompaniyasida amaliyot o'tashni istasangiz, Sizning xorijiy ma'lumotingiz kiberxavfsizlik ma'lumotlariga yoki milliy xavfsizlik bo'yicha tajribangizga qiymat qo'shmasligi mumkin.

Quyida sizning imkoniyatlaringizni yaxshilash uchun qilishingiz mumkin bo'lgan ba'zi qadamlar keltirilgan:

1. Siz ish qidirishning umumiy amaliyotlariga amal qilishingiz kerak. Tarmoq kabi umumiy amaliyotlar, kiberxavfsizlik jamoalarida ishtirok etish, onlayn mavjudligingizni oshirish, rezyumeingizni moslashtirish, ish arizalarini kuzatib borish, va hatto qo'lyozma minnatdorchilik xatini yuborish (even if your handwriting is as bad as mine).

2. Consider de-emphasizing your background on your resume. If you are a U.S. citizen or a permanent resident, consider de-emphasizing your background on your resume if you are from a country that does not have a strong relationship with the United States, as this might reduce the likelihood of being viewed unfavorably. First impressions matter, and you never know who will review your resume.

3. Craft your resume specifically for positions for which you are eligible. Read job descriptions carefully to ensure you meet or exceed all the qualifications listed in both your resume and cover letter. Merely being qualified does not guarantee you will secure an interview or the position.

4. Compile a list of job listings for the roles. Compile a list of the roles you desire, ularning talablarini qayd eting va rezyumeni shunga moslashtiring. bir xil rol uchun turli kompaniyalardan ko‘plab e’lonlarni ko‘rib chiqish orqali, siz sohaning boshlang‘ich darajadagi nomzoddan nima kutishini yaxshiroq tushunasiz.

5. Stajirovkalar yoki ko‘ngilli imkoniyatlarni o‘rganishni ko‘rib chiqing. Agar darhol ish topa olmasangiz, stajirovkalar yoki ko‘ngilli imkoniyatlarni o‘rganishni ko‘rib chiqing. Kiberxavfsizlikga kirish qiyin bo‘lishi mumkin. Agar mashhur kompaniyada stajirovka topa olmasangiz, mahalliy kutubxonalar yoki jamoat tashkilotlarida imkoniyat qidiring. Profilingizga ko‘proq tajriba qo‘shish faqatgina orqa fondingizni ta’kidlashdan ko‘ra foydaliroq bo‘lishi mumkin.

6. Dastlab ITda boshlang, so‘ng kiberxavfsizlikka o‘ting. Agar bevosita kiberxavfsizlikka o‘tish qiyin bo‘lsa, consider starting in IT and then shifting into cybersecurity later. It might be best not to mention this strategy to recruiters; instead, work on your transition while holding a related IT role. After a couple of years, you may have a much better opportunity to break into cybersecurity.

7. Aim at the top. Finally, pursue a certification that distinguishes you. Masalan, consider aiming for the CISSP certification if you also have a education background. Granted, CISSP is not an entry-level certification and you cannot achieve full CISSP status without five years of experience! But you can become an associate CISSP almost immediately if you pass the difficult exam. It is hard for recruiters to dismiss a candidate with a CISSP (or Associate CISSP) certification. Even if your application is ultimately rejected, bu kamida jiddiy e'tiborga olinishiga ishoniladi. CISSPni olish katta majburiyat talab qiladi, lekin agar siz bir necha yuzta diqqat bilan tayyorlangan ariza va qopqoq xatlarni yuborishga tayyor bo'lsangiz va bir necha yuzta boshqa nomzodlar bilan raqobatlashsangiz, bu aslida harakat qilishga loyiq bo'lishi mumkin.