Confidentiality
Only the right people can see the data.
Your medical records. Your nurse can read them. A journalist or someone in another department cannot.
A field guide for the curious, in two scrolls.
You don't need to code to build a cybersecurity career.
Ten serious paths into the highest-paid corner of tech, mapped for writers, video editors, producers, and TikTok creators in Lagos and beyond. Salary ranges, certs, and one clear next step by Friday.
10paths
0code required
6 to 14months in
The ten paths
hover · click any line
- 01Security Program & Project Management
You run the program. Engineers build, you ship.
- 02Security Awareness & Training
Stop people from clicking the bad link.
- 03Cybersecurity Sales & Sales Engineering
You sell the security tool. Storytelling on camera, paid in commission.
- 04Privacy & Data Protection
You turn the law into something the product can actually ship.
- 05SOC Analyst Tier 1
Pattern recognition, on rotation.
- 06Governance, Risk & Compliance
You prove the company is following the rules.
- 07Threat Intelligence & OSINT
You are the analyst the SOC reads.
- 08Identity & Access Management
You decide who gets in, what they see, and when they're cut off.
- 09Incident Response Coordination
You don't analyse the malware. You run the bridge call.
- 10Cyber Insurance
You price the risk of a breach.
02Foundations
Forget the hoodie.
Most of cybersecurity is not hacking. It is writing, organising, talking to humans, and watching.
Forget the dark-room, hoodie-up movie image. Cybersecurity is the practice of protecting digital assets (data, systems, money, identity, reputation) from people who want to steal, destroy, or manipulate them. Think locks, security guards, fraud investigators, insurance, and lawyers. Just for things that live on phones, laptops, servers, and the internet.
Every time you log into a bank app, send a WhatsApp message, post on TikTok, or tap a POS in Lagos, cybersecurity is doing work in the background. It is not a niche IT job. Banks, hospitals, telcos, fintechs, churches, NGOs, and individual creators with monetised accounts now need it.
Cybersecurity Ventures puts global cybercrime at $10.5 trillion in 2025. IBM's Cost of a Data Breach Report 2024 puts a single breach at $4.88 million on average.
Curiosity matters more than a CS degree. Writers, video editors, producers, social-media managers, project managers, and lawyers are already in the room.
Who attacks. Nation-states (Russia, China, North Korea, Iran, plus Western agencies) spy and sabotage. Organised crime runs ransomware and fraud as a business, complete with HR and customer support. Hacktivists hack for politics. Insiders misuse legitimate access, sometimes for revenge, often by accident. Opportunists use ready-made tools at scale.
Who defends. In-house security teams. Managed providers watching many clients at once. Big-4 and boutique consultancies. Government agencies (NITDA, NDPC, ngCERT in Nigeria. CISA, ENISA, NCSC abroad). And the vendors who build the tools (Microsoft, Cisco, Palo Alto, CrowdStrike, IBM, Cloudflare, Fortinet).
What is protected. Data, money, identities, infrastructure, reputation, intellectual property. The boring list that everything else rests on.
The fines. GDPR reaches €20m or 4% of global annual turnover. Nigeria's NDPA 2023 reaches ₦10m or 2% of annual gross revenue. The NDPC has already fined MultiChoice Nigeria ₦766.2m and, with the FCCPC, Meta $220m.
Red team are ethical attackers paid to break in. Penetration testers, red teamers, exploit developers, bug-bounty hunters.
Blue team are the defenders who build, monitor, and respond. SOC analysts, incident responders, threat hunters, security and detection engineers.
Purple is not a separate team. It is a way of working. Red attacks, blue watches, both refine detections together.
Reality check. Offensive work gets the YouTube hype. Most of the jobs and most of the budget sit on the defensive side. That is also where the clearest entry paths are.
Cybersecurity is a spectrum, not a single role.
Heavily technical. Penetration tester, security engineer, malware reverse engineer, detection engineer at L2 and above, cryptographer, DevSecOps.
Hybrid. SOC L1, incident responder, threat-intel analyst, vulnerability management, IAM admin.
Non-technical, no coding required. GRC, security awareness and training, sales engineering, privacy and DPO, security project and program management, cyber law and policy, threat intelligence and OSINT, communications and content for security tools.
If you are a writer, video editor, producer, or TikTok creator, the skills carry over. Clear communication, narrative thinking, audience empathy, knowing how to ship a piece of content. Awareness training, OSINT, threat-intel writing, GRC documentation, and security marketing are starving for people who can make complex things make sense to humans.
You can build a serious cybersecurity career without writing a line of code. The creative background is the advantage.
Three pillars
Every cybersecurity decision serves one of three goals.
Integrity
The data is accurate and untampered.
Your bank balance. If an attacker silently changes ₦500,000 to ₦5,000, integrity has failed even if the system is 'online'.
Availability
The system is accessible when needed.
Hospital systems during an emergency, or banking apps on payday.
If you are a writer, video editor, producer, or TikTok creator,
your background is an advantage.
03Primer
A short glossary.
Twenty-one words that unlock every job description in cyber. Read top to bottom or jump by category.
Eight words you'll hear every day.
Any room with a CISO in it uses these. Get them once and the rest gets easier.
How devices reach each other.
And how attackers and defenders both watch the road.
Who you are, what you can do.
And how the system tells the difference.
The threats you keep seeing in headlines.
Same words show up in every job posting and incident report.
Every term you see across the rest of the site links back to its full entry in the glossary. Press / anywhere to open it.
04Domains
Ten paths.
Each one is a serious career. Pay bands, time to break in, and how much your media background actually transfers. Tap any card for the full deep-dive.
Tap to add a path to compare.
01 · No code
Security Program & Project Management
Production management for cybersecurity. The path with the most direct carryover for anyone who already produces.
Entry pay
$50k-$80k
Break in
6-12 mo
Remote
5/5
From media
5/5
02 · No code
Security Awareness & Training
Change human behaviour at scale. An unfair advantage if you already make TikToks.
Entry pay
$20k-$40k
Break in
6-12 mo
Remote
5/5
From media
5/5
03 · No code
Cybersecurity Sales & Sales Engineering
If you already make things, this is the one that pays the most. The highest-paid non-coding path in tech.
Entry pay
$40k-$70k
Break in
1-6 mo
Remote
4/5
From media
5/5
04 · No code
Privacy & Data Protection
The best-timed local play in Nigerian cyber thanks to NDPA 2023. DPO-as-a-service is real income.
Entry pay
$30k-$50k
Break in
6-12 mo
Remote
4/5
From media
4/5
05 · Light code
SOC Analyst Tier 1
The most realistic technical-adjacent on-ramp into cyber for non-coders.
Entry pay
$18k-$35k
Break in
6-12 mo
Remote
4/5
From media
3/5
06 · No code
Governance, Risk & Compliance
Paperwork, policy, and people. The non-coding path with the clearest line to CISO.
Entry pay
$25k-$45k
Break in
9-14 mo
Remote
5/5
From media
4/5
07 · No code
Threat Intelligence & OSINT
The closest cyber role to investigative journalism. Research, verify, write.
Entry pay
$25k-$45k
Break in
9-18 mo
Remote
5/5
From media
5/5
08 · Light code
Identity & Access Management
Quiet, methodical, well-paid. Massive sustained demand at every Nigerian bank.
Entry pay
$25k-$45k
Break in
6-12 mo
Remote
4/5
From media
3/5
09 · No code
Incident Response Coordination
Run the war-room when ransomware hits. The producer's job, in a crisis.
Entry pay
$25k-$45k
Break in
12-24 mo
Remote
5/5
From media
5/5
10 · No code
Cyber Insurance
Excellent comp ceiling without a JD. Underwriters and brokers are quietly the best-paid non-engineers in cyber.
Entry pay
$25k-$45k
Break in
6-18 mo
Remote
3/5
From media
3/5
05Nigeria
The local landscape, honestly.
Lagos is the centre of African cybersecurity hiring right now. What is real, what is hype, and where the money lives.
A boom held back by a talent shortage.
Nigeria is in the middle of a cybersecurity boom built on regulation, fraud pressure, and digital-economy push, held back by an acute talent shortage. The NDPA 2023 + GAID 2025 created the NDPC, which has already fined MultiChoice Nigeria ₦766.2m and (with FCCPC) Meta $220m. NDPC reports the data-protection industry created 10,123 jobs in 2023 with a projection of up to 500,000 future DPO roles. BFSI represented 29.2% of Nigeria's $230m cybersecurity market in 2025, projected to reach $414.9m by 2031 (Mordor, 2026). Cisco / University of Pretoria put Nigeria's certified cyber workforce at only 8,352 (2023); Deloitte's 2025 Outlook found 67% of Nigerian organisations operating below required cyber headcount.
Local employers, grouped.
Tier-1 banks
GTBankZenithAccessUBAFBNStanbic IBTCWemaSterlingFidelity
Fintechs
FlutterwavePaystackInterswitchMoniepointKudaOPayCarbonFairMoneyPalmPay
Telcos & infra
MTN NigeriaAirtel AfricaIHS TowersMainOne (Equinix MN1)
Big 4 / consultancies
DeloitteKPMGPwCEYAndersenCWGInq.DigitalDigital JewelsPhillips Consulting
MSSPs / cyber-natives
Digital EncodeInfopriveCyberpluralDeepTechCyberEthnos CyberPlatviewFPGKaspersky AfricaSophos
Government
NITDANCCNDPCEFCC CybercrimeONSADSSNPF Cybercrime CentreLagos State Cybersecurity Advisory Council
International with Lagos presence
IBMMicrosoftOracleCiscoCloudflare (Lagos PoP at MDXI Lekki)
Where to actually meet people.
CyberSafe Foundation
CyberGirls Fellowship. 1,800+ alumnae across 27 African countries, 400% income uplift per World Bank 2023. CyberGirls+ with SANS/GIAC scholarships.
ISC2 Nigeria Chapter
CISSP / CC community.
ISACA Lagos
890+ members. CISA / CISM crowd.
ISACA Abuja
Northern chapter.
OWASP Lagos / Yola
Application security focus.
CSEAN
Cybersecurity Experts Association of Nigeria. Runs Cyber Secure Nigeria conference and CSEAN CTF.
BSides Lagos
Annual community-run conference.
DEF CON Group Lagos / DC234
Local DEF CON chapter.
Africa Hackon
Pan-African hacker community.
WiCyS Nigeria Affiliate
The verified women-in-cyber body. Recommended over the unverifiable 'NWiIS'.
NIWIIT
Nigerian Women in Information Technology.
CYSEC NG
Cyber-security community for content and awareness.
3MTT cohort Discord/WhatsApp
Federal scholarship cohorts.
TryHackMe Nigeria
Active Discord server.
HackTheBox Nigeria
Active Discord server.
Free first. Paid only when an employer demands it.
USD/NGN averaged ₦1,522 in 2025 (peak ₦1,607 in May). At ~₦1,500/$1, a Security+ voucher (~$404) is roughly ₦606,000, which is 3 to 6 months of an entry-level Nigerian cyber salary.
Free first. ISC2 1MCC (free CC course + free exam voucher; $50 AMF after passing). Microsoft Learn (full SC-900/AZ-500/SC-200 paths). Cisco NetAcad. Coursera financial aid. SANS Cyber Aces and free webcasts. Professor Messer free Security+. Cybrary. Antisyphon Pay-What-You-Can. 3MTT federal scholarship.
Scholarship-funded. CyberSafe CyberGirls (free; BTL1 voucher for top performers). CyberGirls+ x SANS (free SANS course + GIAC attempt, worth $8k+ each). ISC2 Diversity scholarships.
Pay USD only when an employer requires it, will reimburse, or to close a real gap on a remote application. Sensible sequence: ISC2 CC (free) → Security+ ($404 if needed) → CISA ($575 member) for GRC/audit lane, or SC-300 ($165) for IAM lane, or IAPP CIPP/E ($550) for privacy lane.
The dollar multiplier is real.
The salary delta is the headline: local junior cyber ₦200k-₦500k/mo (~$1,600-$4,000/year) vs remote junior US/UK $40-80k+/year. A 10-20× multiplier in USD.
Currency hedge. USD income held against ~28% naira inflation in 2024 (₦450/$1 in Q2 2023 → ₦1,500-1,600/$1 in 2025) is itself a wealth-preservation strategy.
Time zones. Lagos WAT (UTC+1) is dead-on with UK summer time, 1 hour off CET, 5-6 hours behind US East, 8-9 behind US West.
Payments. Deel, Remote.com, Oyster, Multiplier (EOR). Wise, Payoneer. Nigerian fintechs Geegpay/Raenest, Grey, Cleva, LemFi for virtual USD/GBP/EUR accounts.
Power & internet. Budget for an inverter (₦400k-₦1m + batteries), and stack ISPs. FiberOne (₦12k-₦32k/mo), ipNX premium (~₦22k/mo), Spectranet 4G LTE, MTN/Airtel 5G, Starlink Residential (₦57k/mo + ₦590k hardware; new residential signups paused in parts of Lagos/Abuja as of Feb 2026. Verify at starlink.com/ng; Roam ₦38k or Business ₦159k still available).
Companies known to hire Africa-based remote talent: Andela, Turing, Toptal, Microverse, Terminal.io, Gebeya, Tunga; GitLab, Automattic, Zapier, HashiCorp, Cloudflare, DuckDuckGo; Snyk, Datadog, Stripe (Paystack parent), Tines, HackerOne, Bugcrowd, Synack, Trail of Bits.
06Action plan
Five steps.
By Friday, this month, this year. Tick them off as you go. Progress is saved to this device. The first one is free and takes about ten minutes.
0/5
- Step 01 · This week
Free Certified in Cybersecurity (CC) course + free exam voucher. Apply for the 3MTT cybersecurity track in parallel. Federal scholarship, no fee.
www.isc2.org - Step 02 · This month
Subscribe ($14/mo via Geegpay/Grey virtual USD card). Pick exactly one lane: SOC, GRC, OSINT, Privacy, IAM. Start a public weekly post streak on LinkedIn or X.
tryhackme.com - Step 03 · Within 3 months
CyberSafe CyberGirls (women 18-28), 3MTT Cohort 4, Andela Learning Community, or AWS re/Start Nigeria. Free, structured, with peers.
- Step 04 · Within 6 months
OWASP Lagos, CSEAN's Cyber Secure Nigeria, or ISACA Lagos. Volunteer at BSides Lagos. Enter the CSEAN CTF. ~70% of entry-level Nigerian cyber roles never make it to job boards. Networks book them.
- Step 05 · Within 12 months
Local first (fintech SOC, bank IT audit graduate scheme, Big 4 GRC analyst). Remote second (Andela/Turing/Toptal profile, Geegpay USD account ready, target fully-remote Africa-friendly cyber companies). Skip cert-collecting until an employer requires it.