1. Foundations
Networking, Linux, Windows, web basics, Python, command-line fluency, and enough cloud knowledge to understand modern attack surfaces.
A practical cybersecurity study roadmap for self-directed learners.
This roadmap turns a broad cyber learning goal into a sequence of foundations, blue-team practice, offensive basics, forensics, governance, and certification prep. It is designed for students and junior analysts who need structure, not motivational noise.
2. SOC operations
Alert triage, log sources, SIEM search habits, phishing review, endpoint evidence, and writing notes that another analyst can trust.
3. Offensive basics
Recon, web vulnerabilities, privilege escalation, Active Directory concepts, and CTF practice with strict lab boundaries.
4. Forensics
Disk, memory, browser, email, and timeline evidence. The goal is repeatable investigation, not dramatic screenshots.
5. Governance
Risk language, policies, incident reporting, asset ownership, access review, and the business context around security decisions.
6. Certification prep
Use certifications to validate a learning path after practical work is underway, not as a replacement for practice.
How to use the roadmap
- Pick one phase for the week and write down the exact lab, reading, or artifact you will finish.
- Log time and notes as evidence of progress, especially commands, screenshots, and lessons learned.
- Review completed work every week and move unfinished items forward deliberately instead of restarting from zero.
- Turn strong labs into portfolio evidence only when the scope, assumptions, and limits are clear.
Who this is for
This page is for people learning cybersecurity through a mix of university work, home labs, CTFs, portfolio projects, and entry-level SOC practice. It is not a promise of employability by itself. The value comes from consistent evidence and clearer judgment over time.
Track it in the app
Cyber Command Center provides the task checklist, notes, timer, training log, guest mode, and optional account sync for this roadmap.
Open Cyber Command Center or read the SOC analyst checklist.