Cybersecurity & IT
Security operations, entry-level cyber roles, and frontline IT support - monitoring, triage, and keeping users and systems safe.
Career path patterns
How people actually get into these roles
The big picture
Information security is one of the fastest-growing career fields internationally — US labour projections cite roughly 29% growth for security analysts through 2034, nearly three times the average for all occupations. In the UK, government skills surveys report persistent gaps at every level. Critically, 51% of hiring managers now actively seek candidates from non-traditional backgrounds. This is genuinely one of the most accessible high-earning fields for career changers right now.
Key stat
New entrants to cybersecurity are trending older — 39- to 49-year-olds made up 35% of those entering the profession within the past year, up from 18% in 2022. It is never too late to make this move.
Source: ISC2 workforce study
Common path patterns
Notable examples
Kevin Mitnick
Once the FBI's most-wanted hacker after convictions for computer crimes, he rebuilt his career as one of the most respected security consultants in the world before his death in 2023.
Brian Krebs
After a cybergang hacked his home network, he became so engrossed in cybersecurity that he left mainstream journalism to report exclusively on cybercrime. KrebsOnSecurity is now one of the foremost sources in the field.
Kevin Poulsen
Built a journalism career on breaking down complex technical subjects, drawing on his background as a convicted hacker — access and perspective traditional reporters lacked.
Roles in this industry
A Security Operations Centre (SOC) Analyst is responsible for the continuous monitoring, detection, and response to cybersecurity threats...
Estimated salary: £25,000–£40,000 (L1/L2, UK). L3 and senior SOC roles £40,000–£65,000+. MSSP roles often include shift allowances.
View role →A Junior Cybersecurity Analyst monitors an organisation's systems and networks for signs of intrusion, malware, or policy violations. Cor...
Estimated salary: £22,000–£35,000 (entry level, UK). Mid-level SOC Analyst £35,000–£50,000+.
View role →An IT Support professional provides technical assistance to end users and maintains the hardware, software, and network infrastructure an...
Estimated salary: £20,000–£32,000 (1st/2nd line, UK). 3rd line and senior roles £32,000–£50,000+.
View role →A Penetration Tester — often called an ethical hacker — is hired to attack an organisation's systems, networks, and applications before m...
Estimated salary: £30,000–£50,000 (junior to mid-level, UK). Senior and lead testers £55,000–£80,000+. Specialist red teamers and CREST-certified consultants in London can exceed £90,000. Day rates for contract testers range from £400–£800+.
View role →A Cloud Security Engineer designs, implements, and maintains the security controls that protect an organisation's cloud infrastructure —...
Estimated salary: £35,000–£60,000 (junior to mid-level, UK). Senior cloud security engineers £65,000–£90,000+. Principal and architect-level roles in London financial services and tech frequently exceed £100,000. Contract day rates typically £500–£900.
View role →
Cybersecurity & IT
SOC Analyst
A Security Operations Centre (SOC) Analyst is responsible for the continuous monitoring, detection, and response to cybersecurity threats across an organisation's infrastructure. Working within a SOC — which may operate 24/7 — analysts triage security alerts, investigate incidents, contain threats, and document findings. They work with SIEM platforms, endpoint detection tools, network monitoring systems, and threat intelligence feeds to identify and respond to attacks in real time. SOC Analysts are typically tiered (L1, L2, L3) by experience and responsibility. L1 analysts handle initial alert triage; L2 analysts conduct deeper investigation and correlation; L3 analysts lead complex incident response and may contribute to threat hunting. The role demands strong technical knowledge of networks, operating systems, and attacker techniques, as well as the ability to work calmly under pressure during active incidents.
Qualifications (summary)
CompTIA Security+ is a standard baseline requirement. CompTIA CySA+ is the most relevant mid-tier certification for SOC work. Microsoft SC-200 (Security Operations Analyst) is highly valued for Microsoft Sentinel environments. Splunk Core Certified User/Power User is useful for Splunk-based SOCs. GIAC GSOC and GIAC GCIA are respected advanced certifications. Practical experience on platforms like TryHackMe, Hack The Box, or LetsDefend is increasingly cited by employers as meaningful evidence of capability.
Salary (if available)
£25,000–£40,000 (L1/L2, UK). L3 and senior SOC roles £40,000–£65,000+. MSSP roles often include shift allowances.
See industry eligibility & qualifications →
