As National Apprenticeship Week shines a spotlight on career development opportunities, it’s important to acknowledge that traditional apprenticeships aren’t the only route into the cybersecurity industry. With cyber threats growing exponentially, the demand for skilled professionals has never been higher. Fortunately, alternative training programs, such as academies, internships, and specialised upskilling initiatives, are providing essential pathways into this field.
The Need for Cybersecurity Talent
Research from the Department for Science, Innovation and Technology (DSIT) highlighted the urgency needed to address the cybersecurity skills gap. Nearly half (44%) of businesses report shortages in fundamental technical skills, with incident management gaps soaring from 27% in 2020 to 48% in 2024. Similarly, the UK National Audit Office has emphasised the necessity for government and private sectors to rapidly develop cybersecurity skills, knowledge, and culture to bolster resilience.
Apprenticeships and alternative training programs play an important role in equipping individuals with the practical expertise required to protect businesses and national infrastructure from cyber threats. Many professionals in the industry have benefitted from non-traditional routes into cybersecurity, benefitting from hands-on experience to accelerate their careers.
Beyond the Traditional Pathway
For many aspiring cybersecurity professionals, practical experience is just as crucial as theoretical knowledge. William Smith, now an Academy Consultant at Bridewell, initially pursued a cybersecurity course at the University of South Wales but found that he still had much more to learn. “I knew gaining hands-on experience in the field was essential. The Bridewell Academy offered the perfect blend of both, making it the ideal opportunity to kick-start my cybersecurity career,” he says. His journey highlights the importance of blending structured learning with real-world application.
Others, like Sabrina Wressell, Graduate Cyber Security Consultant at Bridewell, transitioned from completely different backgrounds. “My decision to change careers was influenced by my husband, who worked in the cybersecurity department of the British Army. Initially, the technical aspects seemed overwhelming, but as I explored platforms like TryHackMe, I became more confident. When our Army life was coming to an end, I saw an opportunity to pursue my own career. I applied to the SANS Upskill Programme and was fortunate to secure a place, which launched my cybersecurity journey.” Her experience underscores how self-guided learning and structured upskilling programs can help newcomers break into the field.
For some, an apprenticeship was the perfect alternative to university. Corbyn Grace, now a Security Consultant at Pentest People, reflects on why he chose an apprenticeship over a traditional degree: “University was an option for me, but the ability to earn while learning stood out. I’ve always preferred hands-on experience over traditional study. Apprenticeships provided the best of both worlds, allowing me to develop real-world skills while building my career.”
Similarly, Ben Dragisic, an Internal Systems Consultant at Pentest People, emphasises the long-term advantages of an apprenticeship: “My apprenticeship is a Level 4 foundation degree, shorter than a full degree but immensely valuable. I gained three years of hands-on experience while earning, whereas my university peers will still be in classrooms. This practical exposure is something you can’t get any other way.”
For those who start from even earlier stages, apprenticeships provide a stepping stone into prominent cybersecurity careers. Muhammad Yahya Patel, now a Lead Security Engineer at Check Point Software, began his career as an IT apprentice working in local Lancashire schools. Over time, he climbed the ranks to a senior role in one of the world’s largest cybersecurity firms and is now a global advocate for breaking down barriers to entry. “The cybersecurity industry struggles with hiring new talent due to stringent requirements that often exclude junior professionals. This ‘gatekeeping’ effect makes it difficult for newcomers to secure roles. While apprenticeships and entry-level roles are increasing, they still fall short of meeting industry demand. If structured correctly, apprenticeships can bridge the skills gap, providing hands-on experience while helping organisations cultivate cost-effective talent pipelines for the future,” he explains.
Why Alternative Routes Matter
While degree apprenticeships are a fantastic option, they aren’t the only way to enter the cybersecurity field. Programs such as academies, internships, and bootcamps offer focused, practical training that accelerates skill development. Many organisations recognise the value of these alternative pathways, helping individuals launch successful careers without the need for a traditional university degree. The stories of those who have taken these alternative routes prove that hands-on experience, mentorship, and structured training programs can be just as valuable as a degree in preparing individuals for cybersecurity careers.
As the cybersecurity skills gap continues to widen, embracing multiple entry routes is essential. Apprenticeships, academies, and specialised training programs offer hands-on experience, financial accessibility, and a direct pipeline to employment. By expanding and promoting these opportunities, we can build a stronger, more resilient cybersecurity workforce ready to tackle tomorrow’s digital threats.
The alternatives:
Pentest People Academy
At the heart of Pentest People’s commitment to driving the next generation of cyber talent is the Pentest People Academy, a comprehensive training program designed to transform graduates and new talent into skilled penetration testers. Led by experienced consultants, the academy delivers hands-on, real-world training, equipping participants with the necessary skills for industry-recognised certifications and preparing them for the challenges of cyber security.
Through shadowing, group tutoring, and practical learning, participants gain hands-on experience while progressing into their chosen specialist testing category. Unlike traditional apprenticeships or internships, the academy offers a full-term paid role with a consultant contract upon successful completion, making it an attractive career-launching opportunity.
The academy has demonstrated it can take a candidate from novice to penetration tester over the course of 12 months, reinforcing its reputation as an industry-leading training initiative.
Link: https://www.pentestpeople.com/pentest-academy
Bridewell Academy
Skills shortages in cyber security have been a persistent challenge for UK organisations, especially in critical national infrastructure (CNI) sectors where there is a high demand for specialist skills. To address this challenge and ensure these organisations can access the expertise and resources they need to operate safely and securely, Bridewell launched the Bridewell Academy, a program aimed at recruiting and training entry-level cyber security talent.
The Bridewell Academy provides a paid, permanent, and full-time position designed to kickstart new careers in cyber security, with no prior experience needed.
