Cybersecurity is a field that builds upon a professional’s expertise in people, process and/or systems. This is because cyber threats target people’s behaviors, processes that are followed by a business, or features and functions of information systems and technology. Cybersecurity professionals must understand their business from at least one of these perspectives before they can successfully apply security principles in an effective manner. People just entering the cybersecurity profession can begin with an academic understanding of security principles and/or work experience in a field that deals with people, processes or systems (such as HR, finance or Information Technology). Learning about effective cybersecurity controls can be achieved on the job, provided new employees are able to operate as part of an experience Cybersecurity team that can provide support and mentoring to refine the competencies required to successful defend or attack cyber threat actors.