I’m having a hard time finding a Cyber Security Position after nearly a year of searching. Currently I work as a analyst on a government contract using SQL, Python, and Excel on a daily basis. I also have a secret clearance and I’m being investigated for a Top. To get familiar with the field I’ve been getting certs like Sec +, Network +, CySA +, and Splunk Power user and I’ve also been practicing doing malware analysis, playing around with SIEMs and EDR software, and doing virtual labs.
Within my company and outside I’ve been applying for roles as a SOC analyst but I haven’t gotten any hits. **I lack the actual on the job experience most of these jobs require and I just don’t know how to bridge that gap.** When I apply for online jobs I know for sure I get rejected because they ask for at least 1 – 3 years for experience at I can’t lie and say I do. How am I supposed to get the job without experience, and the needed experience without the job? I can mess around with Splunk and EDRs all day but its nothing compared to working with them at an enterprise level.
Currently I’m working on the GCIH cert to make myself more “marketable” but I’m slowly losing hope. I’m open to any suggestions, jobs/positions I should apply for, certs to get, things to practice, really anything.