Layout

• One-page CVs are a myth. Make sure yours includes all the details of your previous and current jobs and the responsibilities involved, even if the contents spill onto a second page.
• If you are including a professional summary (or personal statement), keep it brief. Give a high-level overview of your expertise in cyber.

Job history

• Detail your key skills here by making it clear which previous roles required you to use these.
• Using bullet points, detail past projects and explain what you personally contributed - not the whole team or department. Use action verbs such as ‘achieved’, ‘built’, ‘delivered’, ‘executed’ or ‘optimised’. For more guidance on detailing your experience, check out this blog.
• If you have experience in a leadership role, mention the team size, your specific duties and outcomes achieved as a manager. Again, use words such as ‘led’ or ‘raised’ for impact.

Additional skills/experience

• Include a Technical Skills Summary. Only include tools you have hands-on experience of using and would be comfortable answering questions on in an interview. If it’s something you’ve never actually worked on, then don’t include it. You’re just putting yourself at a disadvantage.
• Always include full details of your education and any current certifications in cyber security. You can also add certifications that you are actively working towards, for example ‘RMIT Cyber Security Risk and Strategy – Completion by (date)’.
• List blog sites you contribute to and/or professional groups you are a part of, as well as conferences you have attended or spoken at.

• Include personal/school related cyber security projects you have worked on.
• Mention any conferences you have attended, or cyber memberships you hold (AISA, AT&T Security Conference etc.).
• List tools you have worked with that are similar to the ones the hiring party have mentioned in the job spec. It’s also a good idea to write about any past roles where you learned how to use a tool without any prior knowledge, this demonstrates you have the ability to develop in this position too.

What to avoid when writing your CV for a job in cyber security

• As discussed here, omit phrases such as ‘good communicator’ or ‘team player’. Instead, demonstrate your communication skills when listing your previous responsibilities and achievements by using action verbs such as ‘influenced’, ‘advised’ or ‘negotiated’.
• Don’t include inactive certifications or partially completed degrees unless you are still working on these and have a projected graduation date.
• Don’t include personal hobbies or interests unless they are relevant to cyber or tech more broadly.