With the massive push to try and close the skills gap in the tech industry, we’ve seen a lot about Cyber Security Analysts. It’s great to learn about what options are out there for those of us looking to upskill or reskill, but with it being such a diverse field, it can be hard to truly understand where our studies can take us. So, we decided to investigate.

We spoke to an employee from Sophos Managed Threat Response (MTR) and asked them some questions about how they got into the field and what they’re doing now.

What is your current role and what does it entail?

I work as a Threat Analyst Level 1 at Sophos MTR. The role is spread across different activities such as investigating cases that are generated from detections, monitoring communication channels such as email, and being available on phone to resolve any customer queries.  I also participate in threat hunting campaigns for our customers to proactively hunt for any vulnerabilities across their estate. Teamwork is the most important part of my role as we collaborate on ideas and provide the customers best security outcomes.

How long have you worked in your current role?

9 months.

What is your education/background that helped you get into your position?

I have certificates in CompTIA A+, CompTIA Network+ and CompTIA Sec+. I don’t have any previous background or work experience in cybersecurity. I worked as a Project Officer and Credit Assessor in my previous roles but ultimately found my passion in cybersecurity.

Why did you decide to enter the tech industry?

Across my roles I have always aimed to help people and make their lives better. I always had an interest in technology but never pursued it as a career. In recent years, the threats in cybersecurity have increased tremendously and I believed that I could translate my interest into a career in cybersecurity and make a positive impact on the wider community.  

What are five of the main tasks you do on a daily basis?

• Create cases, track and follow up with clients through threat neutralization.
• Handling customer enquires received via email and phone regarding cybersecurity events.
• Conduct threat hunting to identify potential threats throughout the MTR customer base.
• Conduct security log management and monitoring.
• Participate in Security Operations process improvement and creation.

What’s your favourite part of the job?

Continuous Learning. I get to learn new things every day and within Security Operations Center (SOC), I get to experience the best of everything as we see a variety of cases on different threats. This keeps me excited every day about what I will get to learn today.

What advice would you give someone looking to join the industry?

Stay focused. It is very easy to get overwhelmed in this industry with so much information around us. You don’t need to learn everything in one day. If you are learning something or studying towards a certification, stay focused on the path and don’t be hard on yourself.

So, there you have it, right from the horse’s mouth! If you’re looking for an exciting new career with plenty of variation, opportunities for further learning and career progression, becoming a qualified Cyber Security Analyst is the way to go.