Ep33: Do you really need to know Python or coding to be a great cybersecurity engineer?

Speaker: 00:00:00

Do you really need to know Python or

coding to be a great security engineer?

2

: 00:00:04

Short answer.

3

: 00:00:05

No.

4

: 00:00:06

Many people claim that you must

know how to code or learn Python to

5

: 00:00:10

succeed in cybersecurity engineering.

6

: 00:00:12

Honestly, that feels like gatekeeping.

7

: 00:00:15

I've also heard people say that

you can't call yourself a security

8

: 00:00:18

engineer if you don't automate through

code, but that simply is not true.

9

: 00:00:22

Automation can be beneficial, but

it's not a requirement for every role.

10

: 00:00:26

Coding is important, especially in roles

like application security or staff,

11

: 00:00:31

product security engineering, where

you work alongside software engineers,

12

: 00:00:35

application security engineers.

13

: 00:00:37

Or cloud engineers on code reviews,

Python scripts, or product contributions.

14

: 00:00:42

However, insisting that every security

engineer needs to be a coding expert

15

: 00:00:47

just keeps talented people away.

16

: 00:00:49

In fact coding today often means being

able to write simple instructions clearly.

17

: 00:00:54

It's about logic and problem solving

rather than complex programming.

18

: 00:00:59

You can be an amazing security

engineer by mastering core skills,

19

: 00:01:03

like threat modeling, vulnerability,

assessment, and incident response.

20

: 00:01:07

There are many roles in cybersecurity

that do not require coding such as

21

: 00:01:10

governance, risk and compliance GRC.

22

: 00:01:13

Security awareness, training and

security operations center, SOC analysis.

23

: 00:01:19

Those rules focus more

on policies, process, and

24

: 00:01:22

monitoring rather than coding.

25

: 00:01:23

Not every cybersecurity role requires

deep coding knowledge or Python skills.

26

: 00:01:28

If you want to learn coding, or if

it's part of your desired role, go

27

: 00:01:32

for it, it will help your career.

28

: 00:01:34

AI tools, including AI

powered vulnerability.

29

: 00:01:37

linters are also making Python coding

help, more accessible than ever, which

30

: 00:01:43

is transforming how cybersecurity

professionals approach coding tasks.

31

: 00:01:48

You don't need to be a

coding genius to succeed.

32

: 00:01:51

Many of these tools can handle basic

to advanced code reviews, saving

33

: 00:01:55

time for security and software

engineers during final code review.

34

: 00:01:59

How much time is wasted on vulnerabilities

that require coordination between

35

: 00:02:04

teams for review and research.

36

: 00:02:06

AI can handle the initial work.

37

: 00:02:08

Allowing engineers with code literacy.

38

: 00:02:10

To resolve issues faster.

39

: 00:02:12

Focus on the skills that

really matter in cybersecurity.

40

: 00:02:16

Understanding system architecture,

performing risk analysis, building

41

: 00:02:20

a strong security culture and

using security automation tools.

42

: 00:02:24

Python can be useful, but

it's not always a requirement.

43

: 00:02:28

These are often the skills that

make the biggest impact, depending

44

: 00:02:32

on your cybersecurity role, you

may or may not need to know how

45

: 00:02:36

to code or use Python at all.

46

: 00:02:38

As a security engineer.

47

: 00:02:40

Maturing and cybersecurity means

understanding the person who meets.

48

: 00:02:44

100% of the job requirements.

49

: 00:02:46

Probably exaggerated on the resume

while you might hesitate to apply

50

: 00:02:51

with 60% of the qualifications.

51

: 00:02:53

Apply anyway.

52

: 00:02:55

If you're interested in breaking into

tech, remember that there are many

53

: 00:02:58

different paths into cyber security.

54

: 00:03:00

Without the gatekeeping.