Is It Hard To Get a Job in Cyber Security?

Yes, it’s hard to get a job in cyber security.

But if you want to know why…

Or find some ways to make it easier, I suggest you read more.

Why is it hard to get a job in cyber security?

Well, there’s really 3 reasons why you’re having a tough time trying to find a job in cyber security.

It’s the market’s fault. Sometimes things are simply out of your control.

This could be due to a company-wide layoff, or maybe there’s a market wide recession making it tough for employers to hire more labor.

Is It Hard to Get a Job in Cyber Security
Source: Civilian unemployment rate (

It’s also possible there’s a shortage of opportunities in your specific niche.

After all, there are only so many pentesting positions available. If everyone wants to be a pentester, then some of you are naturally out of luck.

Source: Indeed

As you can clearly see, I wouldn’t hold my breath trying to find a job as a pentester.

It could also be the employer’s fault there are no cybersecurity jobs.

Employers make it hard to get a job in cyber security. Sometimes it’s intentional, sometimes not so much.

What do I mean by that?

Some employers might not know what they need. This is especially true for companies that’ve never hired in the security space.

And you know exactly what I’m talking about!

You’ll look at a job description that ask for too many responsibilities or have unrealistic qualifications when the title clearly states entry-level position.

But, there’s another reason why employers make it especially hard!

You might have been told not to apply for jobs that are more than 30 days old (you should but more on that later).

That’s because, it’s common for hiring managers to purposely leave jobs open more than 30 days after the role has been filled.

These are known as “ghost jobs”. I know it’s a horrible thing to do to job seekers because it’s a clear waste of your time.

But why do they do this?

Let’s take a look…

Is It Hard to Get a Job in Cyber Security Ghost Jobs Survey
Source: ClarifyCapital

Basically, it’s a way to get some extra resumes for free just in case a new vacancy opens up!

I can’t completely blame employers for doing this because the cost to purchase resumes is expensive.

But here’s something even more infuriating…

Ghost Jobs Survey

That’s right. Roughly 1/3 of all employers were too lazy to remove the job posting.

Finally, it could be YOUR fault for not getting a cyber job!

You already know how tough it is to get a job in this field.

Are you truly doing everything in your power to find a job? Because none of what I’m about to tell you is anything new!

1. First off, how marketable are you?

Do people know you? Have they ever heard of you?

You can’t expect people to hire you if they don’t like you. And you can’t get people to like you if they’ve never met you.

Are you going to career fairs, industry networking events, and infosec conferences?

If the answer’s no, that means you’re not spending the time networking with others. Get out there, make yourself known, and tell them (or better yet, show them) what you can do!

Trying syncing with like-minded people at cybersecurity clubs in school or your local MeetUp and BSides.

2. Now aside from networking, are also you upgrading your skills at every opportunity?

To be real, everyone’s got security certifications and a college degree. Do you think for one second, a recruiter’s going to waste their time on someone with anything less?

They might…but then you’ve got to work twice as hard to get their attention!

That means go get a new certification, go back to school, or even join a CTF…do something!

3. Are you spending nearly every minute of your free time applying, applying, and applying to jobs?

If you already have a job, or are in school, then you’ve got plenty of time in the evenings and weekends.

But, if you don’t have either to worry about, you’ve got absolutely no excuse! You should be applying 10-12 hours per day!

Now, keep this in mind when applying for cyber security jobs

In a survey of 1042 managers involved with hiring, it was found that 78% of managers take up to 3 months to hire a candidate!

Is it hard to get a job in cyber security, when to apply?
Source: ClarifyCapital

What does that mean?

Don’t just apply to jobs posted less than 30 days ago (as I previously mentioned) but don’t waste time applying to jobs over 90 days old either!

Now, there’s probably dozens of other little things you can do. But the few I mentioned above are critical if you want a job!

Above all else, perseverance and patience are golden. It may take weeks, months, or years; but it will happen.

Looking to upgrade your career?
View our listing of cybersecurity jobs!

What Do You Think?

Is it hard to get a job in cyber security?

Are you currently having trouble finding a job?

What have you done to look for a job?

If you recently found a cyber security job, what do you think worked for you?

Either way, let me know by leaving a comment below right now.

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Scroll to Top