According to the U.S. Bureau of Labor Statistics, employment of information security analysts will grow 35% from 2021 to 2031, much faster than the average for all occupations. If you’re looking to start or grow a career in cybersecurity, the following blogs, podcasts, professional organizations, and employment resources can help you on your journey.
Top Cybersecurity Sites and Blogs
Cybersecurity sites and blogs are a wealth of information, news, and ideas. They are provided by news organizations, magazines, websites, and some of the top industry professionals. Here are some of the best top cybersecurity blogs and sites.
Shostack and Friends
Shostack and Friends focuses on economics, privacy, and security in a group blog format.
SIGNAL Media provides news content about communications and information technology in the defense, intelligence, and global security communities. SIGNAL is from AFCEA, the Armed Forces Communications and Electronics Association.
CIO From IDG
CIO offers articles with insight and expertise on business strategy, innovation, and leadership. CIO is published by IDG, International Data Group.
CNET Cybersecurity has the latest news on cybersecurity and IT issues. It’s hosted by CNET, which is known for delivering the latest on tech, culture, and science.
Computer World Emerging Technology
Emerging Technology features news, how-tos, reviews, and videos from the tech world. It’s presented by Computer World magazine, which is for IT and business technology professionals.
CSO From IDG
CSO provides news, analysis, and research on security and risk management for IT security professionals. It is another site presented by IDG.
Daniel Miessler is a cybersecurity professional and writer in San Francisco. Besides a blog, Miessler’s site offers a podcast, newsletter, tutorials, and IT projects.
Dark Reading shares news about new cyberthreats, vulnerabilities, and technology trends. The site is an online community of thought-leading security researchers, chief information security officers, and technology specialists.
Data Insider a blog from Digital Guardian, offers articles on data protection, security, threat research, industry insights, and other cybersecurity issues
Forbes’ Cybersecurity blog shares articles about security, hacking, malware, viruses, and other IT issues.
GlobalSign’s blog shares articles about security, IoT, quantum computing, and other IT issues. GlobalSign provides identity and security solutions.
Graham Cluley offers computer security news, advice, and opinion on his blog. Cluley is a public speaker and independent cybersecurity analyst who has worked in computer security since the early 1990s.
Infosecurity shares hot topics and trends, in-depth news analysis, and opinion columns from industry experts. It is presented by Infosecurity Magazine.
ITProPortal delivers news, reviews, and features about cybersecurity. The British site says it gathers, summarizes, and curates leading enterprise B2B technology stories and trends.
IT Security Guru
IT Security Guru shares articles about security, threat detection, data protection, hacking, and other tech issues. It’s a daily digest of breaking IT security news stories.
Krebs On Security
Krebs On Security is a daily blog on cybersecurity and cybercrime. It’s written by Brian Krebs, an American journalist and investigative reporter.
Mashable Cybersecurity collects articles that appear on its website. It delivers news on security, hacks, VPNs, and other IT issues.
Naked Security by Sophos
Naked Security provides news, opinion, advice, and research on computer security issues and the latest internet threats. It’s provided by Sophos, a British security software and hardware company.
PC Magazine Security Reviews
PC Magazine Security Reviews gathers the latest news, reviews, and how-tos on cybersecurity. It’s provided by PC Magazine, a leading authority on technology.
PC World Security
PC World Security gathers current news and reviews in the cybersecurity world. PC World has been an online-only magazine since 2013, after it started as a print magazine in 1983.
Purdue Global Information Technology
Purdue Global Information Technology blog provides career advice, tips for succeeding as an online student, trends in information technology, and guidance on growing your IT career.
SC Media has news and reviews of a cybersecurity nature. SC has been sharing news and information about security since 1989.
Schneier On Security
Schneier On Security covers cybersecurity issues. It’s written by Bruce Schneier, a fellow and lecturer at Harvard's Kennedy School and a self-described public-interest technologist.
Security Affairs discusses cybersecurity, hacks, the deep web, malware, hacks, and other security subjects. It is hosted by Pierluigi Paganini, who writes for many security magazines and sites.
Security Bloggers Network
The Security Bloggers Network aggregates a wide range of information security blogs and podcasts that cover a range of topics including data protection, malware, ransomware, and more.
Security Weekly has information about cybersecurity issues online. Security Weekly is a podcast network for the security community.
Tao Security is a blog on digital security, along with strategic thought and military history. It’s written by Richard Bejtlich, a senior fellow in the Center for 21st Century Security and Intelligence.
TechCrunch Security gathers the site’s top articles on cybersecurity. TechCrunch reports on technology news, trends, and new tech businesses and products.
The Akamai Blog
The Akamai Blog discusses news, insights, and perspectives on the tech world. Akamai is a global content delivery network, cybersecurity, and cloud service company.
The Hacker News
The Hacker News provides coverage of data breaches, cyberattacks, vulnerabilities, malware, and other security issues. The site says it has over 8 million monthly readers.
The Last Watchdog
The Last Watchdog provides articles about cybersecurity, scams, and other digital issues. It’s written by Pulitzer Prize-winning journalist Byron V. Acohido.
The Security Ledger
The Security Ledger explores the impact of cybersecurity on business, commerce, politics, and everyday life.
The State of Security
The State of Security shares articles about ransomware, cyberbullying, hacks, and other security topics. Its own staff and guest writers provide commentary, opinion, and other information.
Threatpost discusses the latest news on cloud security, malware, vulnerabilities, and other IT topics. It is intended for security professionals worldwide.
Troy Hunt writes about hacking, browser security, and other security issues. He is a Microsoft regional director and runs the website “Have I Been Pwned.”
We Live Security
We Live Security provides articles about malware, scams, security, and other digital issues. It is hosted by ESET, a Slovakia-based company that specializes in malware detection and analysis.
Wired’s Security page collects articles about cybersecurity from the website. Wired focuses on how emerging technologies affect culture, the economy, and politics.
ZDNet Zero Day
ZDNet’s Zero Day shares the latest in security research, vulnerabilities, threats, and computer attacks. ZDNet is aimed at IT professionals.
Top Cybersecurity and Tech Podcasts
Cybersecurity and tech podcasts are a great way for IT professionals and students to learn more about their field. Most of the top tech podcasts can be heard on your laptop or on your phone with such software as Apple Podcasts, Google Podcasts, Spotify, Stitcher, or other apps.
Accidental Tech bills itself as “a tech podcast we accidentally created while trying to do a car show.” It features news on tech, security, gaming, and other digital subjects.
Back to Work
Back to Work features talk about online productivity, communication, work, barriers, constraints, and tools. The podcast is presented as a talk show.
Clockwise is a freewheeling discussion of current technology issues. It features two hosts, two guests, and four topics, all under 30 minutes.
CyberWire Daily Podcast
The CyberWire Daily Podcast reviews the top cyber news each day of the week. Host Dave Bittner summarizes the day’s stories.
Daring Fireball covers a wide range of digital topics. Recent episodes featured discussions about the state of automation on iOS and MacOS, Apple Watches, and USB-C iPhones.
Darknet Diaries bills itself as a podcast about hackers, defenders, threats, malware, botnets, breaches, and privacy. It’s run by Jack Rhysider, who ran security for a Fortune 500 company.
Digital Planet is a weekly program from BBC about technological and digital news from around the world. Among the topics covered are privacy, facial recognition, and digital forensics.
Download This Show
Download This Show is a weekly Australian program about the latest in social media, consumer electronics, digital politics and other issues. Previous shows have discussed Google, Facebook, and streaming platforms.
Mac Power Users
Mac Power Users is about Apple technology and issues with it. Recent shows covered iOS 16, the M2 MacBook Air, iPhones, and the Apple Watch.
Note To Self
Note To Self focuses on the impact that technology has on everyday life. Subjects have included software surveillance, social media, and other issues.
Pivot offers insights into the biggest stories in tech, business, and politics. It’s hosted by Recode's Kara Swisher and NYU Professor Scott Galloway.
The Privacy, Security, & OSINT Show
The Privacy, Security, & OSINT Show not only provides a roundup of security topics but also interprets daily headlines through the lens of privacy and security.
Risky Business is a long-running podcast about a wide range of information security topics. In-depth analysis of stories and how they impact global security trends provide the backbone of the podcast.
Rocket focuses on geek culture, including tech, comics, movies, games, and books.
SC Media Podcasts
SC Media Podcasts cover a variety of topics from several different hosts. Show topics have included end-to-end encryption, cyberspying, bots, and other current issues.
Security Now has weekly episodes about the latest breaches, exploits, and other technical cybersecurity developments.
Security Weekly Network
Security Weekly Network features several cybersecurity podcasts. Shows cover enterprise, business, and application security, along with weekly security shows.
Tech Talker is aimed at both tech professionals and those looking to enter the field. Shows have offered a look at the best iPhone apps, how to rescue a wet device, and other pieces of advice.
TechStuff is about the people, companies, and marketing behind tech, along with its effects on the world. Recent shows have discussed Twitter, whistleblowers, and national security.
The Daily Crunch Spoken Edition
The Daily Crunch Spoken Edition delivers the top startup and technology news from Techcrunch in an audio format.
The Vergecast is a weekly show that looks at what's happening right now in the world of technology and gadgets.
This Week In Google
This Week In Google discusses the latest Google and cloud computing news. Show topics have included Google debit cards, Zoom security, and Zoom burnout.
This Week In Tech
This Week In Tech features top tech pundits in a roundtable discussion of the latest trends in high tech. Security and privacy issues are typical topics of discussion.
On Unsupervised Learning, host Daniel Miessler summarizes the top stories in the news related to cybersecurity, technology, and society.
What’s New With Wired
What’s New With Wired is a daily podcast exploring the ways technology is changing lives. Each day features new stories from Wired.
Wired features weekly podcasts on a variety of technology topics. Articles have featured discussions of VR, folding phones, and TikTok.
Cybersecurity Employment Resources
Employment for cybersecurity professionals usually falls into one of two categories: government and private sector. Here are some of the agencies and companies that provide employment to cybersecurity and IT pros in both sectors.
- Central Intelligence Agency: The CIA hires IT and cybersecurity professionals.
- Department of Homeland Security Cybersecurity: The DHS has jobs for cybersecurity analysts, among other tech fields.
- Defense Information Systems Agency: The DISA employs more than 7,000 civilians in 80 different career series worldwide.
- Federal Bureau of Investigation: The FBI is looking for experts in forensic science, computer technology, cybersecurity, and other fields.
- Federal Reserve: The central bank of the United States is looking for information technology pros, among other positions.
- Government Accountability Office (GAO):The GAO hires information technology management specialists, along with other digital positions.
- National Security Agency: Along with jobs for professionals, the NSA offers paid internships, scholarships, and co-op programs for students.
- Air National Guard: The Air National Guard is looking for “cyber surety” specialists to ensure the security of computer networks and online communications.
- U.S. Army: The Army’s Cyber Command is looking for many computer professionals for its positions.
- U.S. Marine Corps: The Marines have support staff in IT and other online roles.
- U.S. Navy: The Navy is seeking technical computer scientists and computer engineers to become cyber warfare engineers.
- U.S. Office of Personnel Management: The federal government is looking to create a cybersecurity workforce.
- Auth0: Auth0 provides authentication and authorization for web, mobile, and legacy applications.
- Duo Security: Duo provides two-factor authentication and endpoint security for clients.
- Everbridge: Everbridge provides communications services for notifications of emergencies.
- LogRhythm: LogRhythm designs, develops and delivers cyberthreat solutions.
- Keeper Security: Keeper Security prevents password-related data breaches and cyberthreats.
- MITRE Corporation: MITRE manages federally funded research and development centers supporting several U.S. government agencies.
- Ping Identity: Ping Identity’s software provides identity management and identity access management.
- Rapid7: Rapid7 provides technology, services and research for client security.
- SailPoint: SailPoint provides identity management and governance for unstructured data access.
Cybersecurity Professional Associations
A number of professional associations strive to provide connections and resources for cybersecurity pros. They often provide continuing education and certification. Some also have student memberships. Here is a list of some of the top groups available.
- (ISC)2: (ISC)² is an international, nonprofit membership association for information security leaders.
- Association for Executives in Healthcare Information Security: AEHiS is an education and networking platform for senior IT security leaders in health care.
- Center for Internet Security: CIS is focused on enhancing cyber security in public and private sector entities.
- Cloud Security Alliance: The Cloud Security Alliance promotes the use of best practices for providing security assurance within cloud computing.
- CompTIA: CompTIA is a non-profit trade association that gives professional certifications for the IT industry. Student memberships are also available.
- Executive Women’s Forum: The Executive Women's Forum links prominent and influential female executives in information security, risk management, and privacy.
- ISACA: ISACA (formerly the Information Systems Audit and Control Association) has been helping information security and IT professionals for 50 years.
- Information Security Forum: ISF is an independent, not-for-profit organization with members in many of the world’s leading Fortune 500 organizations.
- Information Security Research Association: ISRA is one of the leading security research organizations in the information security industry.
- Information Systems Security Association: ISSA is an international organization of information security professionals and practitioners.
- International Association for Cryptologic Research: IACR is a scientific organization which aims to further research cryptology and related fields.
- International Association of Security Awareness Professionals: IASAP members develop and implement security awareness programs in their companies.
- Internet Security Alliance: ISA provides cybersecurity expert testimony and thought leadership in government and the media.
- National Cybersecurity Society: The NCSS focuses on providing cybersecurity education, awareness, and advocacy to small businesses.
- Open Web Application Security Project: OWASP is a nonprofit foundation that works to improve the security of software.
- The Institute of Internal Auditors: The IIA says it is the recognized authority, acknowledged leader, global voice, chief advocate, and principal educator in the internal audit profession.
- Women in CyberSecurity: WiCyS is dedicated to bringing together women in cybersecurity from academia, research, and industry to share knowledge, experience, networking, and mentoring.
Meet Your Career Goals With an Online Cybersecurity Degree
Would a cybersecurity degree help you further your career? Purdue University Global offers an online bachelor’s degree in cybersecurity to help you master the fundamentals of this growing field, as well as an online master’s degree in cybersecurity management for professionals who want to prepare for leadership roles. Request more information today.