Unlocking Careers: Training and Development at NormCyber
16 January 2025 // 5 Min Read
At NormCyber, we’re not just building a business—we’re building careers. From opening doors to the world of cyber security and data protection to helping our people shape their professional paths, we’re all about investing in our team’s growth. With tailored training programs, personal development plans, and a culture of continuous learning, Norm provides its employees with the tools they need to succeed. Here’s how we nurture talent and cultivate expertise.
Breaking into cyber security and data protection can feel like a steep climb, but at Norm, we make it accessible. Unlike many organisations that demand years of experience for beginner roles, we focus on creating true entry points for graduates and career changers alike.
Take our Level 1 Analyst roles, for example. These positions are open to candidates with foundational IT and networking knowledge, supplemented by an introductory cyber security certification. This ensures that passion and potential—not prior experience—are the keys to joining our team.
Our graduate program is another standout opportunity. Participants rotate across operational departments, gaining exposure to various aspects of the business before choosing their specialisation. Isabella Gibson, now a Data Protection Associate, shares her experience: “I didn’t know anything about data protection or cyber security when I started, but the rotational structure and hands-on learning guided me to a role I find incredibly rewarding.”
Comprehensive Training Frameworks
Cyber Security: Structured Playlists and Certifications
Norm’s cyber security training is customised to fit each employee’s unique journey. New hires start with a probationary playlist covering foundational topics like networking and secure system design, delivered via the INE training platform. Post-probation, employees progress through advanced training stages, equipping them for investigative work and specialised roles.
External certifications are also a key part of the mix. From the Security Blue Team Level 1 to vendor-specific qualifications, employees are encouraged to build recognised credentials. These certifications complement hands-on experience, ensuring our team develops both practical skills and industry credibility.
Data Protection: Learning from Experts
In data protection, our training combines formal certifications with mentorship from seasoned professionals. Employees can earn industry-recognised qualifications like the UK GDPR Practitioner or the Certified Information Privacy Manager (CIPM), enhancing their expertise. Mentors, including experienced lawyers, provide invaluable guidance, bolstering employees’ credibility with clients and expanding their understanding of compliance frameworks.
Personal Development Plans: Charting Career Paths
At Norm, every employee receives quarterly objectives to create a clear purpose and direction within their role. The Security Operations Centre goes one step further, providing each analyst with a 12-month Personal Development Plan (PDP). Tailored to individual aspirations, PDPs guide employees toward their goals, whether that’s progressing within a blue team (incident response), transitioning to red teaming (penetration testing), or exploring governance, risk, and compliance roles.
A recent example from the cyber security team illustrates this process:
An analyst with ambitions to become a penetration tester was given opportunities to shadow the red team, tasked with earning the EJPT (Junior Penetration Tester) certification, and assigned hands-on projects like writing vulnerability reports.
Over 12 months, this tailored plan equipped them with the skills and experience to transition into their desired role.
PDPs ensure employees are actively involved in their development, aligning personal goals with the needs of the business.
The Shadowing Initiative: Gaining Real-World Experience
We know that getting a foot in the door of cyber security can be tough. That’s why Norm offers a shadowing program for aspiring professionals. Within this voluntary role, participants gain hands-on exposure by working alongside experienced team members, completing an onboarding plan, and accessing the INE training platform to further enrich their learning.
This initiative builds confidence and practical knowledge, enabling participants to secure roles at Norm or elsewhere. It’s just one more way we’re committed to opening doors for talent.
Fostering a Developmental Culture
One of Norm’s defining features is its culture of learning and collaboration. Employees consistently highlight the supportive environment where peers and mentors readily share knowledge. This culture is reinforced through regular one-on-one check-ins, bi-weekly reviews, and team-wide initiatives to stay ahead of industry trends, from advancements in AI to emerging compliance standards.
As Craig Evans, Threat Detection and Response Manager, puts it: “Everyone here is eager to help—it’s part of what makes NormCyber such a great place to work.”
Looking Ahead: Continuous Growth
Norm is committed to evolving its training programs to meet the ever-changing demands of the cyber security and data protection landscapes. With a focus on emerging technologies, dynamic compliance standards, and employee aspirations, the company ensures that its staff remains at the forefront of the industry.
Conclusion
Training and development aren’t just priorities —they’re part of who we are. From genuine entry-level opportunities to tailored growth plans and a culture that celebrates shared learning, we empower our people to achieve their goals while driving our company’s success.
If you’re looking to start or advance your career in cyber security or data protection, Norm offers an environment that nurtures talent, supports growth, and opens doors to fulfilling opportunities.
Ready to get started? Drop us a question, enquiry, or your CV at info@normcyber.com We can’t wait to hear from you.
Get in touch to take a different approach to cyber security.
