Cyber threats are constantly changing, and keeping up with them can feel overwhelming. As the CEO of DotStar, an MSSP partnering closely with OXEN Technology, People often ask me, “How do you stay on top of cybersecurity trends and actually be part of the community?” It’s not just about reading reports or taking courses—it’s about engaging, learning from others, and contributing back.
I’ve been in cybersecurity for nearly 15 years, and one of the best parts of this journey has been the incredible people I’ve met along the way. From my early days troubleshooting security incidents to leading security teams, I’ve been lucky to connect with brilliant cyber minds. They are sometimes an unruly bunch :), but their insights, advice, and passion have shaped how I approach security today. Cybersecurity isn’t just about technology—it’s about the people who drive it forward, share knowledge, and have each other’s backs.
Follow the Right Sources
There’s a ton of cybersecurity news out there, but not all of it is worth your time. Some of the best sources I rely on include:
- CISA (Cybersecurity and Infrastructure Security Agency) – Straight-from-the-source security alerts and best practices.
- NIST (National Institute of Standards and Technology) – Solid frameworks that influence security policies everywhere.
- Krebs on Security & Dark Reading – Insightful reporting on the latest security issues.
- Vendor Blogs (Microsoft, Palo Alto, Cisco, etc.) – They’re usually the first to report on new threats.
- Threat Intelligence Feeds – Platforms like AlienVault OTX and Recorded Future help you stay ahead of emerging threats.
Get Involved in the Cyber Community
Don’t be afraid to put yourself out there. Thousands of people are at some point in their cybersecurity journey. The more you engage with the community, the more you learn and will find like-minded individuals to help you. Here are some ways to do that:
- Join LinkedIn Groups & Follow Experts on Twitter – Great for real-time discussions on threats and trends.
- Check Out Reddit (r/cybersecurity, r/netsec) – Open conversations, news, and practical advice from other security pros.
- Become part of professional groups (ISSA, ISC2, SANS, InfraGard) offering exclusive insights, training, and networking opportunities.
- Attend Local & Virtual Meetups – Events like BSides, DEF CON groups, and OWASP chapters are great for hands-on learning.
Attend Cybersecurity Conferences & Webinars
One thing I know for sure is that good times will ensue when thousands of security nerds emerge in a city or a hotel. Nothing beats live events for learning and networking. Some of my favorites include:
- Black Hat & DEF CON – The best places to see cutting-edge security research and hacker culture.
- RSA Conference – Big-picture cybersecurity trends and enterprise security.
- SANS Summits – Great for hands-on training and practical security insights.
- Vendor Webinars (Microsoft, Cisco, etc.) – Free and often packed with valuable threat intelligence.
Keep Learning and Get a Certified
To cert, or not to cert, that is the question! While I’m not a pundit squarely for certification chasing, or “baseball card collecting,” as one of my colleagues calls it. Certifications can be an excellent start to get your foot in the door. It’s not going to make up for your lack of experience, but it will demonstrate your dedication and expand your current understanding. Some key certifications to consider:
- CISSP (Certified Information Systems Security Professional) – Great for leadership roles.
- CEH (Certified Ethical Hacker) – If you want to think like an attacker.
- GIAC Security Certifications (GSEC, GPEN, etc.) – Focused and highly technical.
- CompTIA Security+ – A solid starting point if you’re new to the field.
Get Hands-On with Cybersecurity
Get your hands dirty! Reading about threats isn’t enough—you must practice. Here’s how:
- Try Capture The Flag (CTF) Competitions – Sites like Hack The Box and TryHackMe let you test your skills.
- Join Bug Bounty Programs – Platforms like HackerOne and Bugcrowd will let you find real-world vulnerabilities.
- Set Up a Home Lab – Experiment with tools like Kali Linux, Splunk, and SIEMs in a safe environment.
Give Back and Build Your Network
Some of the most valuable learning experiences come from sharing what you know. Consider:
- Writing Blogs or Research Papers – Share your discoveries with the community.
- Speaking at Conferences or on Podcasts – Great for building credibility and connecting with others.
- Contributing to Open-Source Projects – Help build security tools or improve existing ones.
Final Thoughts
Keeping up with cybersecurity isn’t just about reading—it’s about engaging, testing yourself, and contributing. The relationships I’ve built over the years have been invaluable. I encourage anyone in this field—whether you’re just starting or have decades of experience—to stay curious, get involved, and never stop learning. Cybersecurity is a team effort; the stronger our network, the better we can defend against whatever comes next.
By Rob Frickel, DotStar
