Introduction
Hello, I am Andrews Osei Antwi, a Cybersecurity Fellow with a passion for safeguarding the digital realm. I am originally from Ghana, where I developed an early interest in technology and security. My fascination with computer security started after my undergraduate degree, when I would spend countless hours tinkering with security software and hardware, driven by an insatiable curiosity about how things worked and how they could be protected.
My career path has been filled with twists and turns that have shaped my expertise in cybersecurity. Coming off a non-technological background in Geography and Politics, I started off by pursuing a master’s degree in information systems with a concentration in Information Security at Murray State University. My experiences on campus not only honed my technical skills but also ignited a passion for cybersecurity. I vividly remember my first home lab, where I successfully breached a simulated network and then patched the vulnerabilities we had exploited. It was a thrilling experience that cemented my desire to pursue cybersecurity as a career. I further pursue several cybersecurity certifications by earning the coveted Certified Ethical Hacker certification, CompTIA Security+, CompTIA CySA+ among other cloud-specific certifications such as AWS Certified Solutions Architect Association and Certified Security Specialty.
After graduating, I landed my first job as a Cybersecurity threat analyst at a start-up company in Brentwood, Tennessee. This role was a crucial steppingstone, as it exposed me to real-world security challenges and the importance of a proactive approach to cybersecurity. I worked tirelessly, learning from seasoned professionals and gaining hands-on experience in threat detection, incident response, and vulnerability management. One of the most memorable projects I worked on involved mitigating what appeared to be an attack that targeted our company's critical infrastructure. The experience was intense but rewarding, as it underscored the significance of teamwork, quick thinking, and resilience in the face of cyber threats.
Currently, I hold the position of a Lead Information Security Engineer at a biotech company, where my primary responsibilities include conducting advanced research on emerging cloud threats, developing innovative cloud security solutions and spearheading cloud security and DevSecOps policies. My daily routine is a blend of research, collaboration, and hands-on technical work. I spend a significant portion of my day analyzing threat intelligence, writing code to automate security tasks, and collaborating with cross-functional teams to design and implement robust security measures.
One of the aspects I love most about my role is the constant evolution and the need to stay ahead of the curve as cybersecurity is a dynamic field, with new threats emerging every day. This perpetual state of flux keeps me on my toes and continuously drives my passion for learning and innovation. Outside of work, I enjoy working out, playing soccer, and reading.
Cybersecurity Fellow
career options
There is a diverse range of career paths that cater to various interests and skill sets. Whether you are drawn to hands-on technical roles or prefer strategic and managerial positions, there is a place for you in this dynamic industry. Below are some of the prominent career options available in cybersecurity.
Cybersecurity Fellow
skills
What are the main hard skills you use on a daily basis in your current job?
Understanding and securing networks is key in cybersecurity. I use this skill to design and implement network security measures such as firewalls, intrusion detection systems (IDS), and virtual private networks (VPNs). I learned these skills through hands-on experience in my early roles and through continuous education and certifications.
This skill involves collecting, analyzing, and interpreting data about current and emerging threats. I acquired this knowledge through specialized training programs and by working closely with threat intelligence platforms. In practice, I use threat intelligence to identify potential risks, understand the tactics, techniques, and procedures (TTPs) of cyber adversaries, and to inform our defensive strategies.
Effective incident response requires the ability to quickly assess and mitigate security incidents. I developed this skill through real-world experience handling security breaches, incidents and participating in incident response exercises. Daily, I respond to security alerts, perform forensic analysis to determine the cause and extent of incidents, and develop strategies to prevent future occurrences.
Identifying and addressing security vulnerabilities is a continuous process. I honed this skill through professional training and on-the-job experience. I regularly use vulnerability scanning tools to detect weaknesses in our systems, prioritize them based on risk, and implement patches or other remediation measures to protect our infrastructure.
What are the main soft skills you use on a daily basis in your current job?
Problem solving is a never-ending skill, with the rise of new technologies also comes new solutions to previous problems. One’s ability to think outside-the-box and effectively within-the-box is crucial to this role.
Effectively conveying technical ideas to team members, participating in meetings, and documenting security procedures for both technical and non-technical audiences.
Prioritizing tasks, managing workloads, and meeting project deadlines by efficiently allocating time to various development tasks and responsibilities. I learned how to manage my time during my undergraduate studies to succeed in all my responsibilities.
Andrews
’s personal path
Tell us about your personal journey in
Cybersecurity Fellow
:
Securing my current position as a Lead Information Engineer was a journey marked by perseverance, continuous learning, and unexpected opportunities. My job search began with a clear goal: to find a role that matched my skills and passion for cybersecurity. I utilized platforms such as Indeed, LinkedIn, and Glassdoor to find job listings, and joined cybersecurity forums and networking groups for additional leads and advice. Tailoring each of the over 100 applications I submitted was essential, highlighting relevant experience and potential value to each organization.
The interview process was both exciting and challenging, involving technical assessments, behavioral interviews, and case studies. One particularly demanding technical interview required me to perform a live vulnerability assessment and present my findings, testing both my technical abilities and communication skills. Each interview, whether successful or not, was a learning opportunity that helped me improve for the next one.
Emotionally, the journey was intense, filled with moments of self-doubt and frustration, especially when interviews did not lead to offers. Rejections were disheartening, especially as a student on OPT with less than 30 days left on file - but this served as motivation to keep pushing forward.
After relentless searching, I received an offer for my previous position which led me into my current role. The moment was exhilarating and validated the hard work and resilience that went into the process. This journey taught me that finding a fulfilling job in cybersecurity requires not only technical skills but also patience, adaptability, and a positive mindset. For students entering the job market, remember that each application, interview, and rejection brings you closer to your goal. Stay focused, keep learning, and believe in your potential. The right opportunity will come when you least expect it.
What would you tell your younger you regarding building your current career?
If I could go back and give advice to my younger self about building a career in cybersecurity, I would emphasize a few key points that would have been incredibly motivating and reassuring. Embrace the journey and trust the process. It’s easy to get discouraged when things do not go as planned, but every setback is a learning opportunity. Remember that building a career is a marathon, not a sprint. Patience and perseverance are crucial. Do not be afraid to dive deep into new technologies and methodologies. Be curious and proactive in seeking knowledge through courses, certifications, and hands-on experience. Building relationships with professionals in the industry can provide valuable insights, guidance, and opportunities. Join cybersecurity forums, attend industry events, and do not hesitate to reach out to potential mentors. The support and advice from experienced individuals can be a game-changer. Balance arduous work with self-care. It is easy to get consumed by the demands of building a career but taking care of your mental and physical health is equally important. Make time for hobbies, exercise, and relaxation to maintain a healthy and sustainable work-life balance.
Final thoughts & tips
In conclusion, the journey to a successful career in cybersecurity is filled with learning, growth, and unexpected opportunities. Stay curious, build strong connections, seek mentorship, and embrace challenges. Keep your goals in sight and believe in your potential. Your passion and hard work will lead you to success in this ever evolving and rewarding field.
Resources to dig in more
The Hacker News
The website provides up-to-date information on the latest security threats and breaches. It's an excellent resource for staying informed about industry news.
Krebs on Security
Brian Krebs is a well-known journalist who covers cybersecurity and cybercrime. His blog provides in-depth analysis and up-to-date information on the latest security threats and breaches. It's an excellent resource for staying informed about industry news.
Cyber Seek
This interactive heat map provides a granular snapshot of demand and supply data for cybersecurity jobs at the state and metro area levels and can be used to grasp the challenges and opportunities facing your local cybersecurity workforce.
Security Tools
This is a one-stop-shop to read on most of the industry standard tools for all aspect of practical cybersecurity tools.
