🚀 أصبحت CloudSek أول شركة للأمن السيبراني من أصل هندي تتلقى استثمارات منها ولاية أمريكية صندوق
🚀 أصبحت CloudSek أول شركة هندية للأمن السيبراني تدخل في شراكة مع المكتب الخاص
🚀 لقد رفعت CloudSek جولة B1 من السلسلة B1 بقيمة 19 مليون دولار - تعزيز مستقبل الأمن السيبراني التنبؤي
إلى الخلف

From Risk to Resilience: Lessons from a Cybersecurity Professional

March 31, 2026

جدول المحتويات

مثال H2
مثال H3
مثال H4

When most people think of cybersecurity, they picture hackers, firewalls, and endless lines of code. But my recent conversation with Akshit Mittal, a cybersecurity professional at Nokia, revealed another side of this world—the side that builds security before threats strike. As a third-year student curious about the field, I interviewed him as part of the CloudSEK Student Challenge. What I learned was eye-opening.

His Journey: The Shift from Tech to Trust

Akshit began his career with a strong foundation in technology and gradually transitioned into cybersecurity after realizing how critical security is for businesses today. “Cybersecurity isn’t just about coding or catching hackers,” he said. “It’s about building trust and protecting businesses from risks before they happen.”

Over the years, he has worked on risk assessments, compliance frameworks, audits, and security awareness programs for clients across different sectors and regions. His role involves ensuring organizations meet global security standards and are prepared for any unexpected disruptions.

What GRC Really Means

When I asked what GRC (Governance, Risk, and Compliance) is all about, he explained it with a simple analogy: “Imagine you’re building a house. You don’t just lock the doors; you make sure the foundation is strong, the materials meet safety codes, and everyone knows what to do in an emergency. That’s what GRC does for organizations.”

GRC isn’t just about ticking boxes for compliance—it’s about creating a system that prevents risks, manages incidents, and ensures continuity even when things go wrong.

Lessons from the Field

One of the most surprising insights was about soft skills. “People think cybersecurity is all technical, but communication is half the job,” Akshit said. “You need to explain risks to management in simple terms. The best security control is useless if no one understands why it’s needed.”

He also shared how unpredictable regulations and business environments can be. “You have to adapt quickly. There’s no one-size-fits-all solution.” This reinforced the importance of flexibility and continuous learning.

Advice for Students

When I asked what students should focus on, here’s what he shared:

  1. Master the basics: Understand networks, operating systems, and security principles.
  2. Explore roles: Cybersecurity has many paths—GRC, SOC, forensics, ethical hacking. Try different projects or internships.
  3. Get certified: Industry-recognized certifications in security standards and risk management add real value.
  4. Build visibility: Share your learnings on LinkedIn, write blogs, and join security communities.

His most encouraging line? “You don’t need to be a hacker to succeed in cybersecurity. There’s a place for analysts, strategists, communicators—everyone.”

What I Learned

The biggest takeaway from this interview is that cybersecurity is as much about people and processes as it is about technology. Behind every framework, policy, and audit is a mission to protect trust.

As Akshit put it: “Every time we close a compliance gap or prevent a risk, we’re not just protecting systems—we’re protecting businesses and their reputation.”

After this conversation, I feel more inspired than ever to dive deeper into the field. Cybersecurity isn’t just a job—it’s a responsibility to make the digital world safer for everyone.