We all know that working in cybersecurity requires constant learning. Since formal training including certificates (like CISSP, OSCP, SANS/GIAC) provide a great opportunity to learn, many employers fund their employee’s training. However, the extend in employer support seems to differ greatly.
So I wonder
1. How much cybersecurity training / how many certificates do you get per year?
2. How many of those trainings are directly supported by your employer and to what extend? (e.g. paid for and/or extra off days)
For example: I currently try to get one major certificate per year. My current employer (big tech company) pays for one “expensive” certificate every two years. Additionally we are offered one week of internal training every year without certification opportunity. (Hence, I learn a lot in my free time.)