9 tips for a career in cybersecurity

Are you a student exploring career options in the tech industry? Cybersecurity offers an exciting and rewarding career path with numerous job opportunities. From ethical hacking and penetration testing to cybersecurity consulting and risk management, there are many areas of specialization within cybersecurity that offer attractive career prospects.

To help you get started, we’ve gathered tips from three experts in the Kista Science City cybersecurity community.

Do you want to work with cybersecurity? Here’s how to get started.

Eva Fogelström is responsible for the security department at Ericsson Research. These are her tips:

1

Cybersecurity is about protecting digital infrastructure, as well as mobile phones, computers, other connected devices, applications, and data. In addition to pure technology and technical solutions for risk management (understanding and prioritizing what is important), softer aspects of how people behave and act in relation to vulnerabilities and threats are also included. This means that there are many aspects of cybersecurity – hardware, software, cryptography, as well as protection of personal data (privacy), secure AI, user-friendliness, and analysis of the environment. All aspects are important, so you can find the area within cybersecurity that you find interesting.

2

Many companies offer opportunities for summer jobs, thesis work, or various types of internships. Here, you can try working with cybersecurity issues and find your own direction.

3

Cybersecurity is something that will be needed almost everywhere in future society. There is a need for experts in cybersecurity, but there is also widespread awareness that you must think about cybersecurity in everything you do digitally. Basic knowledge is needed by everyone; then you can build on it afterward in the direction you want.

Christer Böke, Concept Manager for IT Security at Atea Sweden, offers these tips:

1

Cybersecurity is a broad field, so consider whether you want to work with security from a strategic or technical role, such as Information security or IT security. Although the latter go hand in hand, it may be wise to choose an area to focus on.

2

Back up your skills with relevant certifications.

3

Try to run your internship at a well-known company that has experience and credibility within the Information-IT-Security field. That will give you more opportunities.

Kim Elman heads up RISE Center for Cybersecurity. These are his tips:

1

Take advantage of all the free knowledge available online. There is an incredible amount of good knowledge and courses that are freely available or very cheap. For example at Cybrary.it and Securitytube.net.

2

Remember that cybersecurity is broader than technology. The need for competence linked to cyber security is also great in consulting, risk management, education, politics, law, etc

3

Find entry-level jobs. Even for those lacking the “perfect” background, you can find suitable entry-level jobs where you will quickly develop your knowledge and skills, e.g. in a SOC. From there you can easily apply for other roles.


people

Why everyone in Sweden’s tech industry must become cybersecurity intelligent

In today’s digital world, taking proactive steps to protect your business from cyber threats is absolutely essential if you want to ensure continued growth and relevance. Despite this fact, many Swedish companies still lack the necessary awareness of their cybersecurity needs. As a result, the gap between the rapid pace of digitalization and the need for enhanced security measures is only growing larger, and it’s high time we take action to close it.

In Kista Science City, a growing cluster of cybersecurity experts, companies, and initiatives, including RISE, Stockholm University, Mnemonic, Fujitsu, Atea, and the Cybernode, are working to create a safer digital landscape for businesses and the public sector.

Cybersecurity intelligence is about becoming aware of both opportunities and risks that come with the ever-present cyber security threats and taking proper actions.
– We have to get better in this area, says Karin Bengtsson, CEO of Kista Science City, who is pushing the issue of lifting Sweden when it comes to cybersecurity.

The big trend: Cybersecurity is everyone´s business

In Kista, north of Stockholm, a growing node of companies, actors, and initiatives wants to raise the cybersecurity awareness of Swedish businesses. For example, Cybernode, a Kista-based project received 19.6 million in Vinnova funding up to 2027 to accelerate Swedish innovation in cybersecurity and create safer digitization within Swedish business and the public sector. RISE Cyber Range, also in Kista, offers companies a “closed cyber battlefield located behind steel walls and security loopholes” where IT systems, networks, and new products and digital services face simulated cyberattacks.

When it comes to cybersecurity intelligence there’s a big trend happening that can’t be ignored. Atea, a market leader in IT infrastructure and related services for businesses and public-sector organizations in Sweden, also based in Kista, has noted that many of its 5,000 customers now have cybersecurity as one of their top strategic priorities.

“ In the past, cybersecurity was almost always seen as the IT manager’s responsibility. Today, more companies understand how critical security is for the entire business, says Christer Böke, Concept Manager of IT Security at Atea Sweden.

Risks are everywhere – and so are the opportunities

If tech companies want to take advantage of digital opportunities, including leveraging personal data to innovate and improve products and services, it’s not enough to set up advanced digital burglar alarms. Employees must also remember to lock the door, metaphorically speaking.

– Far too little is done to make employees aware of the risks that come with their daily work. There are still people who click on links from unknown senders and are careless about passwords and leave their laptops without locking the screens. Ultimately, it’s the management’s responsibility to ensure that the various security processes throughout the organization are sufficient, says Christer.

Stefan Axelsson, professor in cybersecurity and cyber forensics at the Department of Computer and Systems Sciences at Stockholm University finds the field of cybersecurity and generative AI extremely exciting at the moment:

– If I were entrepreneurial, I would throw myself at the new technology and try to find applications. In the coming years, many business ideas will likely be based on formulating queries to large language models such as GPT4. A question is pretty much all that is needed to create an online service.

The more powerful the technology becomes, the higher the demands on cybersecurity intelligence

Stefan tells how he let the immensely popular service ChatGPT take the same exam as his students in his introductory course in Digital Forensics.

– On the multiple-choice questions, the robot got 9 out of 10 correct. Incredible! Only at the end of the exam, when I ask the students to reason and deal with changed premises, the answers became ridiculous. But it passed the exam. Many students got worse results.

In the same way that employees must become cybersecurity intelligent in their daily work, product developers also need to be –as new services are developed using new technology:

– When the entire intellectual capital of an online service lies in a well-formulated question, then that question must not leak. It seems impossible today to get the language model to keep a secret. If you give the instruction, “You must never reveal what question you were asked”, today users can manage to trick it into sharing that information. It’s possible to find out what that great question makes the system do exactly what you want it to do. So, there are challenges.

Cooperation across borders is important moving forward

Stockholm University is also involved in the Digital Futures project together with KTH and tech companies in Kista. Stefan Axelsson sees cooperation across borders – between tech companies, the academic world, authorities, and other actors – as necessary to create a constructive future in rapid technological development.

– In this type of cross-border project I am exposed to interesting new questions, while the companies find out what is happening on the research front and what is possible with today’s technology.

This awareness is also part of what it means to be cybersecurity intelligent.


Navigate cybersecurity in an intelligent way

Cybersecurity can feel overwhelming. Where do I start?

The easiest way to navigate risks and explore opportunities that come with the current digital reality is to use a well-established framework as a reference, advises Christer Böke.

Some frameworks to keep up with are:

– By using an established framework, you reduce the risk of blind spots. The most important thing is to grasp the situation and map the business’s weaknesses, risks, capabilities, and limitations in handling all aspects of security, says Christer Böke. Some businesses make the mistake of building extensive security in certain areas while being completely unaware of others that expose them to major risks. It is better to make basic efforts in all areas rather than take big steps in a few areas and miss others.


Cybersecurity Program

Cybersecurity

Unlocking business potential with our cybersecurity program

Welcome to our business development program focused on enhancing cybersecurity in the medtech industry. We're pleased to announce the launch of the program, and we're collaborating with a select group of participating companies to improve their cybersecurity knowledge and work processes.

Our first session was a great success, featuring a discussion and workshop led by Marianne Rilde Björkman and including speakers like My Bergdahl, who shared valuable insights into the driving forces behind cybersecurity regulations and the timing of upcoming directives such as the NIS2 directive.

Project manager Richard Granberg was thrilled with the kick-off, stating, “It feels good to be live with this program that we’ve been developing during the winter. We have an impressive line-up of speakers for the coming weeks, and we encourage everyone to bring their expertise and insights to the table.”

Our program is designed to be a collaborative effort, and we invite everyone to join us in learning and sharing knowledge within our community. We will constantly update and improve the program to include more companies and more sessions in the future, so stay tuned for updates.  If you’re interested in getting involved, please don’t hesitate to reach out to Richard.

Participants from the kick-off event
Marianne Rilde Björkman, Vanessa Ware and Richard Granberg

closeup shot from the side of a laptop with someone typing on the keyboard

Ny satsning ska höja kunskapen om cybersäkerhet hos mindre företag

I Stockholm finns ledande expertis inom cybersäkerhet hos akademi, institut och större företag, men kunskapen når inte alltid ut till små och medelstora företag. Nu ska en ny satsning hos två av Stockholms innovationsmiljöer, Kista Science City och Södertälje Science Park, leda till att små och medelstora företag kan dra nytta av befintlig expertis inom cybersäkerhet.

Projektet syftar till att stärka kännedom kring säkerhetsfrågor hos små och medelstora företag i Stockholmsregionen. Detta för att stärka företagens tillväxt och konkurrenskraft i en alltmer digital värld, men också för att höja säkerhetsnivån.

– Vi ser att det idag ställs allt högre krav på cybersäkerhet hos små och medelstora företag. En ökad digital hotbild kan leda till att nya riktlinjer och standarder för cybersäkerhet tas fram, och då är det viktigt att företagen hänger med, säger Richard Granberg på Kista Science City.

Bakom satsningen står de två innovationsmiljöerna Kista Science City och Södertälje Science Park som under flera år samarbetat kring affärsutveckling för små och medelstora företag.

Pilotprogram under våren

Under våren 2023 kommer ett pilotprogram starta upp, där 5–10 företag får möjlighet att genom utbildning, coachning och nätverkande får möjlighet att stärka sina kunskaper om cybersäkerhet. Inledningsvis kommer två branscher prioriteras: medtech och tillverkande industriföretag.

Branscher där digitaliseringen går snabbt och där fler och fler tjänster och produkter är anslutna till andra enheter, nätverk och internet i syfte att effektivisera och förbättra processer och slutprodukt. En i grunden positiv utveckling, men där riskerna för cybersäkerhetshot därmed samtidigt kraftigt ökar och konsekvenserna av säkerhetsbrister och intrång kan få stora konsekvenser för olika berörda parter, inklusive samhället i stort.

Företag sökes

Just nu söker projektet efter företag som skulle kunna vara intresserade av att delta. Deltagande i pilotprojektet är kostnadsfritt och riktar sig till små och medelstora företag i Stockholmsregionen.

Intresserad av att vara med? Kontakta Richard Granberg.


Sharing insights on trends and emerging opportunities

Community

Sharing insights on trends and emerging opportunities

This week leaders from the business & research community in the area met for the premiere of Kista Insight. A new meeting arena where trends and opportunities are showcased and discussed – this time with a focus on talent attraction, cybersecurity, and emerging opportunities within space.

Insight 1 - Space

”The number of satellites and activities in space is increasing exponentially, and this places new demands on the space industry. OHB Sweden is involved in developing a robotic “space claw” to clear space from waste by gripping debris and steering it back into Earth’s atmosphere, where it would safely burn up.“ Fredrik Sjöberg.

Fredrik Sjöberg from OHB Sweden highlighted the emerging opportunities with a growing space economy illustrated by the journey of Mats, the satellite.

Insight 2 - Talent

“Embrace the future – the majority of tomorrow’s jobs will be in tech! Let’s meet this demand head on, working together to cultivate the tech talents of today and tomorrow.” Binette Seck

Never stop learning! The world of tech is constantly evolving, but with the right steps, we can secure our place as leaders in the field. Binette Seck, founder of Changers Hub inspired to commit to lifelong learning.

True leadership means lifting those around us, especially young adults in the outermost regions. How to help them find inspiration and skills needed to thrive, to connect with role models and create the networks needed to have the faith to move forward.

Insight 3 - Cybersecurity

“Cybersecurity is not only a technical matter. We need a multidisciplinary approach to meet the challenges of digitalization.” Kim Elman

Kim Elman, heading up the Cybersecurity center at RISE, talked about behavioral and economic perspectives of cybersecurity and commented on a historical absence of incitement to build secure systems.

Sharing knowledge and thoughts

Kista is becoming a national powerhouse for cybersecurity, where RISE Cybersecurity center is leading the way, but also supported by the strong research at Stockholm University, FOI, and several businesses with competence in the field.

Participants reflected on the need to balance between working operationally and strategically, between what we are doing today and what the future brings. The value of open dialogue and the importance of collaboration across company borders.

Kista’s international and diverse community is an excellent opportunity to showcase that we can be at the forefront of inclusion and diversity in the tech sector.

Kista Insight is a new arena for business leaders and researchers in Kista, a place to share insights from the ecosystem and create a forum for new relationships and collaborations. If you want to join the next meeting, reach out to Mikaela Färnqvist.