The Reality of Working in Cybersecurity

The post describes the reality of working in cybersecurity, highlighting that the majority of the work involves administrative tasks such as risk assessments, compliance checklists, and policy enforcement, rather than combating hackers. It also mentions that most threats are internal, requiring employee training to avoid clicking on malicious links. The job is described as stressful and demanding 24/7 availability. Additionally, automation and AI are increasingly replacing "cool" tasks like incident detection and response. Red team positions are rare, with most jobs being in blue team, compliance, risk management, or policy. Finally, the job market for entry-level cybersecurity positions is very competitive, often requiring 2-3 years of IT experience.