"Can college students learn network security?"
"Can I get a job if I study network security in college?"
"Is College Cyber Security Competitive?"
There are more and more voices on the Internet questioning the entry into the network security industry with a college degree, and many people are questioning that a college degree is not competitive in network security. Many people are discouraged when they see the starting salary of 12K on some recruitment software, and feel that their ability is not worthy of such a high salary, and network security still belongs to the computer industry.
Such worries are not groundless, because the computer industry has developed rapidly in recent years, and many jobs in the industry have become saturated, especially repetitive jobs like programmers. Due to the saturation of talents in the market, companies can find talents with better conditions at the same price. Therefore, in recent years, the requirements of the network security industry have become higher and higher, and non-985 and 211 are discouraged from many jobs.
It is undeniable that academic qualifications are indeed very important in the job market. Of course, it is also very good if each industry has 985 and 211. However, in the network security industry, it takes time for all employees to 985 and 211, and it is currently unrealistic.
There is currently a huge talent gap in the cybersecurity industry.
In the era of digital economy, the development prospects of the network security industry are broad, the information security guarantee is growing geometrically, and the application fields of information security are constantly expanding. However, the current domestic information security is still in its infancy, and there is a great demand for talents, especially top talents, basically all companies that need to use the Internet, such as education, finance, construction, medical care, transportation... .As well as various enterprises and institutions, there is a demand for this aspect. Not to mention Internet companies, there are rumors in the Internet security circle that Jack Ma will use a high salary to retain Brother Dao, the leader of the Internet security circle. This is because information is the most important resource for Internet companies, and information is the most valuable, so leading Internet companies like this will naturally invest more in information security construction. Of course, information is also very important to enterprises and institutions, so they also need talents in network security.
The demand is high, but the network security talent market has been in short supply for a long time, and talent attacks have also appeared to be "not enough".
According to the Ministry of Education's "White Paper on the Practical Ability of Cyber Security Talents", 34 colleges and universities in China have set up first-level disciplines of cyberspace security. By 2027, there will be a shortage of 3.27 million cyber security personnel in my country, and the training scale of colleges and universities will be 30,000. / year, many industries are facing the dilemma of lack of cyber security talents.
Moreover, most of the talents in the network security industry have a college degree. There are many veteran network security talents who are interested in network security, so they taught themselves technology and have been working until today. Many of them don’t even have a college degree, and they can work in this industry. It's booming.
It can be seen that what the network security industry values more is not academic qualifications, but technology.
Jobs in the network security industry continue to increase. The main directions are security tools, web security and vulnerabilities, and the demand is much higher than other computer fields, followed by threat intelligence, CTF and binary security, and the rest such as reverse analysis, emergency response, IOT and security operations. The demand for maintenance is relatively close, and there are security evaluation engineers, security architects, security operation and maintenance engineers, security information law-related practitioners, and so on.
However, because the talent demand of government and enterprise organizations is still upgrading, and the existing network security talent pool in the market, companies generally absorb high-quality talents by increasing salaries and benefits. The average monthly salary is as high as 26.3K, of which 30-50K salary Divination is the most, up to 40.2%
Now that the Internet has penetrated into thousands of households, digital transformation is also in full swing.
Although there were wolves before and tigers behind, the development of my country's digital economy is still strong. E-commerce consumption and online and offline service consumption are very popular. The national online retail sales reached 6.11 trillion yuan, a year-on-year increase of 23.2%. The trade in digital services such as telecommunications, computer and information services has increased significantly, and the new momentum of the digital economy has continued to increase. Whether social wealth production, consumption or business services are increasingly inseparable from the digital economy, the digital society is already closely related and inseparable from human life.
When it comes to digitalization, everyone may be familiar with it, but it is still very difficult for you to tell why. So let me explain the concept of digitization. Digitization evolves on the basis of informatization. Informatization is to transform things in the physical world into expressions in the virtual world, or use some tools to support the expression of the physical world. Essentially, operations The tool is still human. For example, our daily use of the OA automated office system is to move the daily office business process to the virtual space on the network, and realize the office process in the physical world through the virtual space process. The efficiency of daily work has been greatly improved.
Digitization means that we have accumulated a large amount of information data in the process of informatization. Through the analysis and feedback of these data through big data technology or the automatic learning of AI machines, we can guide our economic activities, work life and entertainment in the real world. Everywhere. It becomes a combination of virtual and real world.
The digital society has two characteristics. First, everything is programmable, and the boundary between software and hardware disappears. Second, everything is interconnected. Smartphones, smart watches, Internet of Things devices, and a large number of smart devices will all be ubiquitous on the Internet. So attackers can launch direct attacks and damage if they want to.
In recent years, about 2 million people have been engaged in the black and gray industry. Last year, SolarWinds software vulnerabilities were exploited by hackers, and tens of thousands of corporate customers were attacked by hackers in just over 10 days. According to Cybersecurity Ventures forecast, by 2021, the global losses caused by cyber security incidents will be as high as 6 trillion US dollars. It has reached almost 10% of the world economy, and digital threats are several times faster than our defenses. Judging from the number of cyber attacks, last year was the worst year ever.
In addition, in the extensive offensive and defensive drills carried out in recent years, we have also seen the shortcomings of many enterprises' network security protection. For example, in some cities, the core system was breached within 2 minutes during this type of drill that was close to actual combat, and more than 1,000 vulnerabilities were discovered that could be exploited.
From the above statistical data and the problems exposed in the offensive and defensive drills, it can be seen that most of our network security protection is insufficient, and more importantly, it is almost ineffective. The current digital world is facing increasingly severe information security issues. Cyber security incidents such as ransomware, personal information leakage, Internet of Things attacks, bitcoin theft, telecom fraud, and cyber espionage wars between countries have repeatedly become topics. Cybercrime activity is one of the greatest challenges humanity will face in the next two decades.
The advent of the digital society will bring earth-shaking changes to any field we are familiar with. It is inevitable that our new businesses will experience a digital explosion, including digital government affairs, digital commerce, digital healthcare, digital education, digital manufacturing, digital finance, and digital city governance. For example, a factory can tailor specific products for each consumer based on digital manufacturing technology, which can be a pair of your exclusive shoes, or a customized personalized mobile phone, etc.
At the same time, the explosion of digital business brought the explosion of technology, 5G technology, Internet of Things technology, AI artificial intelligence technology, blockchain technology, big data technology, edge computing technology and so on. With the continuous in-depth application of these new technologies and the popularization of new services, new network security challenges also arise.
The battlefield of network attacks has become larger and larger, and the targets of its attacks are not limited to a single device such as a computer, a mobile phone, or a server of a certain person. The target of attack can be the entire space after digitization, including digital government affairs, smart cities, airports, infrastructure, etc., involving the entire unit, the entire industry, the entire city, or even the entire country.
Those who initiate attacks are no longer individual hackers, petty theft and general criminal gangs, but more attacks are against powerful opponents based on national backgrounds. Due to the increasingly important proportion of the digital economy, countries have established cyber forces and invested huge sums of money in the development of powerful cyber attack weapons. Just like the "WannaCry" ransomware that once caused a sensation all over the world, it was triggered because the US military's cyber weapons were leaked.
The target of the attack is no longer just focusing on personal assets, pornographic photos and invisibility, but the big goals of paralyzing a city, destroying an industry, and subverting a government. In order to achieve their goals, these attack organizations often prepare for many years. For example, in 2021, a nuclear facility in a Middle Eastern country was paralyzed by a cyber attack. The attackers in the incident did research experiments, wrote malicious code, and uploaded it to the Internet to spread and infiltrate the nuclear facility. It took at least six years to achieve the goal.
Vulnerability is the killer weapon of the digital society, even comparable to nuclear weapons. For an exploitable vulnerability, attacking organizations can spend considerable resources to obtain it, and the investment is calculated in tens of millions of dollars. It can exploit this vulnerability to attack high-value targets.
For the normal order of the digital society, the harm of cyber attacks has become very great. Attacks on important infrastructure (electricity, water conservancy, finance, transportation) will cause social instability; it can also trigger political crises and create chaos and subversion government etc. The network security defense and governance of the digital society will become a huge challenge. Whether it is the innovation of product technology, the improvement of the legal system, or the formulation of standards, emergency security service personnel, etc. are very urgent.
In the era of digital society, there is no longer a clear boundary between the physical world and the digital world. Cybersecurity is no longer just about harming and disrupting the digital world. Cybersecurity has spread to every corner of the real world. It can not only endanger a country's political security, key infrastructure security, economic security, social security, and national security, but can even directly endanger personal safety.
Moreover, in this era of digital society, there will be no dead ends for network security attacks. As long as attackers want to, they can attack any smart device in any corner of the world from anywhere in the world.
Therefore, network security is extremely important in today's digital society, and the network security situation is also extremely severe. The future development of the industry will be better and better!