Kickstarting Your Cybersecurity Journey: A Beginner’s Guide

It's 2 AM, and my phone has been buzzing non-stop.

Unknown Caller: Ejiro, did you hack my email!?
Me: Huh? What? Who is this?
Unknown Caller: You don't have my number? Stop lying! Did you hack my email...? Sobs uncontrollably
Me: I don't know who you are. (Okay...fine, I knew exactly who it was, but I'll be dammed if I admitted it.)
Unknown Caller: It’s Jennifer. My email and bank accounts have been hacked! You’re a tech bro! Please help me I know it can't be you but I need your help! More whaling like whale

Now, Jennifer, for those wondering, is my ex. A pretty terrible human, but I’m a sucker for damsels in distress.
Me: Hello, Jennifer. Oh, tell me what happened…
Jennifer: Continues whaling uncontrollably.
Me: Okay, I’ll add Yemi to this call.

Dials Yemi... a cybersecurity engineer from the office who can work some real magic.

After hours of Yemi working his cybersecurity wizardry, he discovers the "exploit" (a.k.a. the real reason Jennifer’s bank account got wiped).

And that, my friends, was the unlikely beginning of my cybersecurity journey.

It hit me while Yemi was busy with the technical magic that most people, including myself, are completely unprepared for cyber threats.

That moment pushed me to start learning cybersecurity from scratch. I spent months exploring beginner cybersecurity projects, experimenting with tools, and earning certifications.

In this article, I’m sharing everything I learned about starting in cybersecurity so you can avoid the mistakes I made and fast-track your journey.

Cybersecurity is one of the fastest-growing fields in technology, offering exciting opportunities to protect networks, data, and systems against ever-evolving threats. So whether you're considering a career in cybersecurity or aiming to boost your resume with hands-on projects, this guide breaks down essential steps to get started.

So let's start from the first principle, what is cybersecurity?

What is Cybersecurity?

Cybersecurity refers to the practice of protecting systems, networks, and programs from digital attacks. These attacks often aim to access, change, or destroy sensitive information, extort money, or disrupt normal business operations.

Effective cybersecurity requires:

1. Knowledge of Networking: Understanding how computers communicate.
2. System Administration Skills: Managing Linux, Windows, and cloud systems.
3. Programming and Scripting: Learning languages like Python and PowerShell.
4. Security Tools: Familiarity with tools like Wireshark, Splunk, and vulnerability scanners.
5. Problem-Solving Skills: Thinking critically to assess and respond to threats.

---

Getting Started: Essential Knowledge and Certifications

Let me start with this statement.
*Cybersecurity is not an entry-level field.
It's a field that assumes you already understand the basics of computing. The idea is this:
How do you secure a machine you know nothing about or you don’t know how to use?

Here are some basic computing principles, you need to know:

1. System Familiarity: You need to know how systems operate to secure them effectively.
2. Networking Basics: Cybersecurity involves monitoring and protecting data transmission; without networking knowledge, troubleshooting vulnerabilities becomes challenging.
3. Operating Systems Knowledge: Many security tasks involve managing and securing Windows, Linux, and cloud systems.
4. Programming and Scripting: Automating tasks and writing scripts for monitoring and incident response require basic programming proficiency.

I'm sure as a beginner or tech novice all your motivation just went to zero because of this, but I promise you they are not as hard as you would think. They are really simple concepts and they give you the ability to really understand systems and tweak them.

If you are already in tech, say a software engineer, network administrator, or any other tech-related field, chances are you already have a head start. Many concepts in cybersecurity build upon general computing knowledge, so you might find yourself transitioning into this field more smoothly than you expect. For those completely new, don’t worry; it’s all about starting with the basics and building from there.

If you're considering a more structured approach as a newbie, look into these certifications:

If you're considering a more structured approach as a newbie, look into these certifications:

• CompTIA A+: Basic knowledge of IT and computing.
• Network+: Networking concepts and infrastructure.
• Security+: Core security practices and tools.
• CCNA: Cisco-certified networking associate program.

These certifications not only teach you the basics but also give you credentials that employers recognize. So get one if you can.

Building Practical Experience: Project Ideas

1. Home Labs

A home lab is a controlled environment where you can test tools and scenarios safely. Learning how to monitor network traffic, simulate attacks, and analyze logs prepares you for real-life scenarios.

Tools to Use:

• Security Onion: For intrusion detection and network monitoring.

• OpenVAS: For vulnerability scanning.

Kali Linux: Ethical hacking toolkit.

VirtualBox or VMware: This is used to create virtual machines.

2. OverTheWire Challenges

OverTheWire provides wargames designed to teach you command-line basics, networking, and security concepts in an interactive format. It’s perfect for beginners looking to build their skills in a structured way.

Key Benefits:

• Hands-on learning experience.

• Builds problem-solving and troubleshooting skills.

• Covers topics like cryptography, web security, and privilege escalation.

Recommended Challenges:

• Bandit: Focuses on Linux commands and file handling.

• Narnia: Explores binary exploitation and debugging.

• Krypton: Teaches cryptography basics.

Other Platforms:

• TryHackMe - Beginner-friendly cybersecurity labs.
• HackTheBox - Advanced hacking and penetration testing.

3. Virtual Machines and Networking

Learning how to configure and manage virtual environments can provide valuable experience. Another Redditor recommends:

"Install a Windows Server 2019 VM and simulate a server within your environment."

You can experiment with:

• Setting up Active Directory.
• Creating user roles and permissions.
• Configuring firewalls and intrusion prevention systems.

4. Scripting and Automation

Coding is a vital skill for cybersecurity professionals. Learn Python and PowerShell to automate tasks. PowerShell is powerful for scripting in Windows, while Python is great for flexibility and object-oriented programming.

Projects can include:

• Writing scripts to automate log analysis.
• Building encryption/decryption programs.
• Creating web scrapers for security monitoring.

Final Thoughts

Breaking into cybersecurity can feel overwhelming, but you can stand out in a competitive field by focusing on fundamentals, earning certifications, and building practical skills. As echoed throughout the Reddit discussion, persistence, curiosity, and hands-on practice are your greatest assets.

Start small, stay consistent, and never stop learning—the cybersecurity field is always evolving, and so should you. Good luck!