News Daily Nation Digital News & Media Platform

collapse
Home / Daily News Analysis / Why Identity Security Is Your Cyber Career Entry Point

Why Identity Security Is Your Cyber Career Entry Point

Jul 08, 2026  Twila Rosenbaum  5 views
Why Identity Security Is Your Cyber Career Entry Point

As organizations grapple with emerging threats and transformative technologies, demand for skilled security practitioners shows no signs of slowing. Despite concerns that artificial intelligence might diminish career prospects for newcomers, industry leaders argue that this technological shift represents evolution rather than elimination. In an exclusive interview, John Paul Cunningham, chief information security officer at Silverfort, shares his perspective on why identity security is an ideal entry point for anyone looking to break into cybersecurity.

Why Identity Security Matters

Identity security touches every aspect of an organization's defense posture. From protecting user accounts to managing access controls, it sits at the intersection of technology, policy, and human behavior. Cunningham emphasizes that identity is often the root cause of major breaches. "Identity touches every piece of security, and it's often the reason companies get breached," he says. This makes it a critical domain for newcomers to focus on, as it offers a broad understanding of how security operates across networks, endpoints, and cloud environments.

The field of identity security encompasses technologies such as multi-factor authentication, single sign-on, privileged access management, and identity governance. Professionals in this area must understand how to balance security with user convenience, a challenge that requires both technical skills and business acumen. By starting in identity, a practitioner gains exposure to almost every other security discipline, from incident response to compliance.

Multiple Entry Points into Cybersecurity

One of the most striking aspects of cybersecurity is its accessibility through many different backgrounds. Unlike professions that demand a singular educational path, cybersecurity welcomes talent from technical roles, audit and compliance, project management, law enforcement, and even the military. Cunningham himself transitioned from a military law enforcement career into technology at JPMorgan Chase, where he was asked to take on security and information risk management.

"I think like a lot of people, I started in technology," Cunningham recalls. "One day they just came to me and said, 'Hey, we need somebody to look at security and information risk management.' I said, 'I'd be glad to take the challenge.'" He then pursued his CISSP certification and actively sought opportunities to grow within the field. This story illustrates that there is no single right path. People come from audit backgrounds, where they assess controls against standards; from project management, where they help implement security initiatives; or from technical roles, where they build and defend systems.

Cunningham advises job seekers to identify their strengths and find ways to adapt them to a security organization's needs. "If you want to be the technical person, start to understand more than one technology—learn networks, endpoints, cloud, get the breadth of experience, and start to delve into how to make them secure," he says. For those less technical, governance, risk, and compliance roles offer a natural fit, as does identity security, which requires both technical depth and business understanding.

AI as an Enabler, Not a Threat

The rise of AI has sparked anxiety among junior analysts who fear that automation will make their roles obsolete. Cunningham pushes back on this notion. While AI excels at parsing massive log files and identifying patterns—tasks that once consumed hours of human effort—the human element remains indispensable for strategic thinking, stakeholder engagement, and adaptive problem-solving. AI cannot run a project, interface with a project team, or understand the nuanced requirements of a business process.

"AI can look through a log file much quicker and more accurately than a human can," Cunningham acknowledges. "But the human never is out of the picture. There needs to be a human overseer that works with AI and knows how to use it." Furthermore, AI introduces new vulnerabilities and security challenges. Organizations are now grappling with how to secure AI systems themselves, which creates fresh opportunities for security professionals. Cunningham believes this explosion of AI has actually made security more important than ever.

Learning from a Military Background

Cunningham's military service in law enforcement provided him with a foundation in leadership, physical security, and investigative thinking. These skills translate directly into the cybersecurity realm. "When we think about cybersecurity, we often talk about confidentiality, integrity, and availability, but we also include physical security and business resilience," he notes. His experience in force protection and regulatory enforcement shapes his approach to protecting both digital and physical assets. For example, Silverfort has employees in Israel, and Cunningham applies principles from his military days to ensure their safety from physical threats.

The military also instilled the importance of adaptability—a trait Cunningham considers essential for success in cybersecurity. The field evolves constantly, and those who cannot adapt will be left behind. He looks for team members who are flexible and willing to learn, because technology will always change.

The Future of Cybersecurity Careers

Cybersecurity is not only growing; it is becoming more diverse in its career pathways. Cunningham points out that as long as there are people and technology, there will be a need for security. Automation may handle some tasks, but the human connection—working with the business, boards, and project teams—will never be fully replaced. He encourages aspiring professionals to embrace continuous learning and to view AI as another frontier to explore, not a barrier.

Identity security, in particular, offers a robust entry point because it forces practitioners to understand the entire attack surface. It is a domain that has existed since the first login screen and will remain relevant as AI introduces synthetic identities that must be managed with the same principles. "How do we segregate AI because it's effectively a synthetic human? How do we establish the same lessons and security principles to AI?" Cunningham asks. These are the questions that will define the next generation of cybersecurity work.

For anyone considering a career in cybersecurity, the advice is clear: find your strength, adapt it to security, and look for opportunities to start, whether in identity, risk management, or technical operations. The field is open to all who are willing to learn and grow.


Source: Darkreading News


Share:

Your experience on this site will be improved by allowing cookies Cookie Policy