Report: What Cybersecurity Students Will Need to Navigate a Chaotic Job Market
Credit: Maskot / DigitalVision / Getty Images- A cybersecurity company surveyed 929 hiring managers, and almost all preferred that potential hires had experience and certifications over just holding a degree.
- Hiring managers valued three soft skills over any technical skills: teamwork, problem-solving, and analytical thinking.
- There are hiring discrepancies between what certifications applicants are expected to have for entry-level jobs and what is actually attainable at that early stage of their careers.
The job market in 2025 is shaky, and there have been reports of nationwide unemployment for recent graduates. Even the field of computer science, one of the fastest-growing and profitable majors, has one of the highest unemployment rates for recent grads.
Cybersecurity professional organization ISC2’s new Cybersecurity Hiring Trends Report revealed what hiring managers in the U.S. and around the world are looking for in entry- and junior-level candidates: experience.
Stay in the Know!
Subscribe to our weekly emails and get the latest college news and resources sent straight to your inbox!
The report signals that students interested in pursuing cybersecurity after graduation should get started on building up their resumes now.
Earn Certifications and Experience Early
Most cybersecurity hiring managers will hire those with experience and certification over grads with just an information technology (IT), cybersecurity, or computer science degree.
Of the 929 hiring managers surveyed, 90% said they’d only consider those with previous IT experience, while 89% said they’d consider only those with a cybersecurity certification.
Students wanting to stand out to hiring managers might want to complete a cybersecurity internship or apprenticeship. Companies use these to identify promising early career cybersecurity professionals during recruitment.
Cybersecurity students might also consider adding a certification to their learning plan. Hiring managers saw them as “nice to have,” and three stood out as essentials: Certified in Cybersecurity by ISC2, CASP+ by CompTIA, and Security+ by CompTIA.
Interested in pursuing cybersecurity? Read more:
Prioritize Soft Skills, Clean Social Media History
Companies are looking for more than technical skills — they’re also interested in how well professionals can work on a team and think critically.
Hiring managers value teamwork, problem-solving, and analytical thinking as the top three skills they look for in entry- and junior-level roles, even above technical skills like data security and cloud security. References from an internship or apprenticeship could speak to these soft skills.
Students should also plan to keep their social media profiles clean. Online presence matters — 54% of hiring managers passed on candidates based on their social media activity.
Hard Skills Still Matter
Learning and proving technical skills is still essential to hiring cybersecurity managers.
According to the report, skills required for entry-level candidates include:
- Documentation
- Alert and event management
- Physical access controls
- User awareness training
Skills required for junior-level candidates include:
- Backup, recovery, and business continuity
- Intrusion detection
- Alert and event management
- Relevant frameworks
- Penetration testing
Expect Unrealistic Entry-Level Cybersecurity Role Requirements
New graduates entering the cybersecurity job market should expect to see some unrealistic expectations from job listings.
ISC2’s report found a discrepancy between employer expectations and the feasibility of early career professionals attaining some credentials employers see as essential.
Thirty-eight percent of hiring managers require the certified information systems auditor (CISA) certification from ISACA for entry-level positions. However, to qualify for the certification, one must have a minimum of five years’ experience.
“Our research shows earch shows that job descriptions for entry- and junior-level cybersecurity talent list requirements that are often difficult or impossible for these professionals to meet,” the report reads.
“This can create a catch-22 — where employers struggle to find qualified candidates and early career talent is locked out of opportunities that could help them build that very experience.”
AI Screening on Applications
Hiring managers and human resources (HR) professionals screened around 87% of job applications. However, 13% were screened by HR and software tools. By the time current cybersecurity students reach the job market, artificial intelligence software screening will likely permeate the hiring landscape.
Maile Hetherington, director of career opportunities at Pepperdine University Seaver College, previously told BestColleges that students should tailor their resumes and cover letters to keywords in job applications to help them stand out and get past filters looking for phrases. But this doesn’t mean they should limit their scope.
“I wouldn’t say just apply to five or 10 jobs,” Hetherington said. “There still is a rule of numbers here. But are you looking into the companies? Are you finding alumni and people to network with to increase your visibility and chances there? That’s really going to be a critical part of the application process as well.”