Sandy Cheong, an Assistant Director in Synapxe’s Chief Information Security Office, shares practical tips for acing your cybersecurity interview and leaving a lasting impression on hiring managers.
Sandy: For technical skills, fundamentally it will be good for the candidate to be equipped with the minimum knowledge of cybersecurity domains – which oftentimes will be part of the basic curriculum in a cybersecurity diploma or degree. For instance, network security, data encryption, security assessment and testing, incident response, and secure software development. If an individual wants to focus on their cybersecurity career in a particular area of expertise, obtaining a relevant certification in that specific domain will be very useful.
Soft skills, like communication and presentation skills, are also essential to effectively collaborate with healthcare professionals, IT teams, and other stakeholders to ensure security measures are understood and implemented thoroughly.
A combination of both technical and soft skills is essential for success.
Looking for a new role? Explore over 100,000 jobs available on MyCareersFuture now!
How should one prepare for cybersecurity job interviews?
Sandy: To truly stand out, candidates should not only highlight the technical skills gained from their past experiences but also demonstrate:
- A reasonable understanding of the cybersecurity scene in Singapore through research, by listing a few major players, recent and upcoming developments, and share some potential challenges and opportunities in the field.
- Commitment to continuous learning by reading industry publications, attending webinars or conferences, participating in relevant online communities, and sharing some of the latest trends and innovations in cybersecurity, that they have observed.
- Lastly, if the cybersecurity role is technical in nature, candidates should be prepared to undergo a knowledge assessment test as part of the interview.
Demonstrating these three aspects during the interview signals the candidate’s genuine interest and preparedness.
Answering interview questions on cybersecurity frameworks
Sandy: As a professional in cybersecurity risk management, our reliance on specific tools differs from that of pen-testers, vulnerability assessors, or cybersecurity forensics.
Cybersecurity frameworks are used to identify, assess, and evaluate risks which aid in the risk decision making process.
We have to seek ways to improve the ‘Likelihood and Impact’ parameters used for evaluating cybersecurity risk by understanding from various stakeholders the issues and challenges with the current framework.
After consulting with stakeholders and securing approvals, we integrate the proposed enhancements into the cybersecurity framework methodology.
In addition, while there isn’t a fixed list of common questions that will be asked during an interview, the candidate should be ready to share and discuss:
Career accomplishments: Share concrete examples of your achievements and their positive impact. For instance, if you designed a cybersecurity email phishing exercise, you could mention the significant decrease in the number of employees who fell victim to phishing attempts after the training. Quantifying results strengthens your candidacy.
Transferable skills: Highlight relevant skills such as problem-solving, project management, being a team player, and adaptability. Despite a lack of experience in the healthcare sector, these skills are valuable assets. Demonstrate how you used these skills in previous roles to show their applicability in this new context.
Advice for mid-careerists looking to move into cybersecurity
Sandy: Personally, I look out for two traits:
- The candidate should display interest and passion for the cybersecurity sector and role. Asking relevant questions about the sector, the hiring organisation and cybersecurity’s role during the interview or at the end of it. This is one of the tell-tale signs that the candidate is engaged and keen.
- A ‘can-do’ vibe by maintaining a positive and optimistic demeanour throughout the interview, even when discussing challenges or setbacks. I look out for candidates who demonstrate resilience by sharing how they were able to overcome obstacles in the past and emerged stronger and more determined as a result.
It takes courage to make a career switch at any point in one’s career. Switching to cybersecurity can be challenging, though not impossible, given that:
There are many globally recognised cybersecurity courses and certifications available, which you can attain at your own pace and complete the classroom training virtually.
There is a growing demand for cybersecurity professionals.
A 2022 study by the International Information System Security Certification Consortium (ISCA), as reported by CNA, found a global shortage of cybersecurity workers that widened by 26.2 per cent to 3.42 million, with a particularly large gap in the Asia-Pacific region.
This means that the career switch to cybersecurity can be guided through proper training and certifications, and there is a wide variety of jobs available for anyone embarking on the switch!
This article is contributed by Synapxe, Singapore’s HealthTech agency enabling technology innovation in the public healthcare sector
