Cyber security training

UK cyber security statistics

In its Cyber Security Breaches Survey 2025, the government revealed that just under half of businesses (43%) and a third of charities (30%) experienced some form of cyber attack or data security breach over the last 12 months to January 2025. This meant that around 612,000 UK businesses and 61,000 UK charities identified attacks or breaches.

While these numbers are down compared to the previous year's research, there's still a need for increased cyber awareness, with organisations urged to tighten their defences.

To combat this serious threat, the Cyber Growth Action Plan 2025 reported a sector that is growing, with annual revenue of £13.2billion - a 12% increase on the previous year.

The policy paper also showed that 67,300 people now work directly in cyber security, a rise of 11% (6,600 jobs) on 2024 figures. This is in addition to the 143,000 workers with jobs across the wider economy, meaning that around 210,300 are employed in cyber security-related roles.

There was also an increase in the number of cyber security firms operating in the UK, with the total now standing at 2,135, after 74 new businesses started over the past year.

Despite industry growth, the 2025 ISC2 Cybersecurity Workforce Study found that skills shortages remain a global issue. It showed that just under two-thirds (63%) of those surveyed experienced staff shortages due to a lack of qualified professionals and the changing technology needs of the organisation. Surprisingly, they found both technical and nontechnical skills were in short supply.

How to get into cyber security

Graduates typically have two primary routes into cyber security:

• Entry-level role/Apprenticeship - build your experience by learning on the job.
• Certifications - develop your technical skills through education.

Existing IT professionals can achieve relevant certifications after holding positions in:

• IT support
• networking
• telecoms.

Cyber security salaries in the UK

There is a high demand for cyber security professionals in the UK. Due to a shortage of qualified candidates, those with the right certifications and experience can earn £30,000 to £75,000 per year. At the leadership level, this can reach £100,000.

As salaries across the sector are rising (£22,000 to £52,000 for entry-level roles), there's never been a better time to choose cyber security as a career.

Here are some of the salaries on offer:

• Cyber security analyst - In your first three years of employment, you can earn £37,500 to £52,000. Senior analysts can take home £65,000 to £80,000, while higher-level managers and leaders can command £72,500 to £100,000.
• Forensic computer analyst - Typical starting salaries range from £25,000 to £30,000, rising to £80,000 at senior level.
• Network engineer - New starters can expect to earn £22,000 to £28,000, while senior network engineers earn £55,000 to £75,000.
• Penetration tester - Starting out, you can earn between £25,000 and £40,000. For senior and team leader roles, this increases to £60,000 to £80,000.

Key cyber security skills

The technical skills you'll gain through studying industry-recognised certifications include having a strong grasp of:

• computer networks
• cyber security tools
• firewalls and routers
• intrusion detection and prevention systems
• operating systems
• programming languages
• remote access
• virtual private networks (VPNs).

Non-technical professionals often have a range of transferable skills that are also required for cyber security, especially in management and training.

In addition to achieving the required certifications, you'll also need to be:

• a person with a commercial outlook
• an analytical thinker and problem-solver
• an excellent communicator with good people skills
• dedicated to continuous learning
• someone with initiative and an entrepreneurial spirit.

Cyber security courses

To forge a successful cyber security career, you'll need a balance between practical skills and qualifications.

While a specific cyber security degree or Masters isn't essential for getting a job in the industry, it would give you greater awareness of the landscape. This would be ideal if you're unsure what to specialise in or want to develop a broader knowledge.

Bachelors degrees in cyber security are available from:

• University of Greenwich
• Manchester Metropolitan University (MMU)
• The Open University
• University of Salford

Many of these three and four-year (those including a work placement year) Bachelor of Science (BSc) courses are accredited by BCS, The Chartered Institute for IT and/or the Chartered Institute of Information Security (CIISec).

For entry onto a programme, you'll be expected to hold a combination of the following qualifications:

• GCSEs
• A-levels
• BTEC National diploma
• Access to Higher Education (HE) Diploma.

For those who have already completed a degree, here are some of the institutions offering the MSc Cyber Security:

• Anglia Ruskin University
• University of Birmingham
• Coventry University
• King's College London
• The University of Manchester

These one-year, full-time postgraduate courses typically look for graduates with a 2:1 or a 2:2 in a related subject, such as:

• computer science
• engineering
• mathematics
• physics.

Some institutions will also accept other qualifications or relevant work experience in an area closely related to cyber security.

Search for Masters degrees in cyber security.

Take a look at the list of certified undergraduate and Masters degree programmes at the National Cyber Security Centre (NCSC), part of the Government Communications Headquarters (GCHQ).

Read more about the professional standards for cyber security qualifications at IT courses.

Cyber security certifications

Certifications are great tools for career progression and don't just build technical skills. These qualifications also teach you the value of your own expertise and build communication skills - crucial if you consider moving from a technical to a managerial role.

There are a number of well-regarded certifications you should be aiming for as a cyber-security professional:

• Certified Ethical Hacker (CEH) - the CEH is a popular entry-level cyber security certification that introduces you to the hacking tools and techniques used by real cyber criminals. By familiarising yourself with how hackers think, you'll be better at fixing vulnerabilities and flaws you might otherwise miss.
• Certified Information Security Manager (CISM) - there's growing recognition for the CISM, offered by ISACA. As the name suggests, the qualification is designed for security managers. It's an expert-level certification that proves skills in risk management and enterprise security systems while teaching the language of business.
• Certified Information Systems Security Professional (CISSP) - the CISSP from ISC2 is among the most sought-after certifications in security. Achieving the CISSP certification is a career highlight and is aimed at the top tier of cyber security professionals.

You'll need five years of cyber security work experience to even sit the exam. Graduates who enter the industry directly after university can achieve this certification sooner.

When progressing your cyber security career, consider additional qualifications that could broaden your skillset, including:

• CompTIA Security+ - to build security basics.
• Certified Network Defender - to learn about network security.
• ISC2 Certified Cloud Security Professional (CCSP) - to demonstrate your expert cloud security knowledge.
• ISACA Certified in Risk and Information Systems Control (CRISC) - for risk management professionals.

Cyber security internships

A number of major employers offer summer internships in cyber security, including:

• BAE Systems
• Barclays
• Deloitte UK
• Rolls-Royce
• Tesco

They typically last 10 to 12 weeks, from May to September.

Explore the cyber security internships available in 2026 and get the lowdown on IT work experience.

Cyber security apprenticeships

Another great option for graduates aiming to break into the industry is a cyber security apprenticeship. This provides an ideal mix of on- and off-the-job learning, resulting in a qualification and extensive industry experience.

While on a cyber security apprenticeship, you'll receive training and certification from industry-leading vendors, such as Microsoft and ISC2. Training is provided through government-approved training providers.

You're eligible to apply for a cyber security apprenticeship if you don't already hold a qualification in a technical field at a higher level, such as a computer science degree.

For details on the types of cyber security apprenticeship roles available, visit Skills England.

There's also CyberFirst, a government education programme for 11 to 19-year-olds run by the NCSC.

Discover which leading employers are offering cyber security and other IT apprenticeships.

Search for cyber security apprenticeships.

Cyber security job roles

Cyber security is broad and provides opportunities for professionals with varying backgrounds, but there are some common career paths:

• Cyber security - protect your organisation by monitoring networks and systems, detecting threats or signs of illegal activity and reporting on them. Get the lowdown on working as a cyber security analyst or forensic computer analyst.
• Network security - data must flow smoothly and securely for IT to work. Networking and security are tightly bound together in modern IT ecosystems. Discover more about the role of a network engineer.
• Security management - security managers oversee security strategies across an entire business, including risk management, data privacy, and firewalls. By understanding the client and identifying their vulnerabilities, whether human or technological, you'll help build, update, and deploy the client's IT security strategy to ensure business-critical data is protected.
• Penetration testing - aims to find vulnerabilities in a client's security system before an attacker can exploit them. This involves simulating cyber attacks and other authorised tests on computer systems. Find out more about what a penetration tester does.

Explore other IT graduate jobs.

Search for cyber security graduate jobs.

Find out more

• Explore technology graduate schemes.
• Get an overview of the UK's IT industry.
• Read about diversity in tech.