10 Nontechnical Cybersecurity Jobs

Cybersecurity is a growing industry with an excellent job outlook—32 percent growth from 2022 to 2032—and high salaries, with a median annual wage of $116,000 [1]. Fortunately, not all positions in this field require a technical skill set, opening the door to more opportunities for professionals of all types.

A skills gap exists between the roles recruiters are trying to fill and the niche technical abilities of candidates. However, technical roles aren’t the only jobs available or in demand throughout the cybersecurity industry. While it might not be what you immediately think of when looking into cybersecurity, you’ll also find a wealth of non-technical jobs.

Read further to discover 10 non-technical roles in cybersecurity and tips on the skills, experience, and qualifications you need to get into the cybersecurity industry without a technical background.

What is a non-technical cybersecurity job?

Law, marketing, writing, public relations, and insurance are just a few of the non-technical skill sets and job opportunities available within the expansive cybersecurity industry. With the ever-growing threat of cyberattacks, organizations need technical experts trained in cybersecurity and non-technical professionals who can handle some of the other critical tasks. With cybersecurity and all it involves comes the need for legal support, management, compliance, staffing, and administration, to name a few. Roles are available if you specialize in these specific areas and have knowledge of cybersecurity but not necessarily any technical expertise. 

Below, you’ll find examples of non-technical cybersecurity jobs and what you can expect from each.

*All average annual base salary data sourced from Glassdoor as of March 2024 and does not include additional pay, such as commission and benefits.

1. Cybersecurity project manager

Average annual salary: $122,543

Requirements: Although many cybersecurity project managers have a technical background, you can still work in this position if your experience lies in more non-technical fields. If your previous professional work in this role dealt with managing different departments while overseeing the efficient completion of projects, your skill set can transfer to other organizations. Additionally, you will typically need a bachelor’s degree in project management, which some schools offer, or a related area, along with experience in the field. A Project Management Professional (PMP)™ certification can also be beneficial.

Cybersecurity is seldom the job of a single person. Usually an organization has a team working on different elements of cybersecurity, often with a larger IT team in general. This requires a project management professional to coordinate everyone, ensure a common goal, and monitor performance. The role includes defining a project scope, managing staff and stakeholders, keeping to budget, and delivering outcomes fully compliant with security standards.

2. Cybersecurity product manager

Average annual salary: $131,489

Requirements: To work as a product manager, employers typically want you to have a degree in computer science, business, or marketing. Although understanding the cybersecurity industry and having some technical skills can be beneficial, if you want to work in cybersecurity, many employers are primarily searching for someone with product manager skills and experience. A cybersecurity product manager works on designing and developing cybersecurity-related products or incorporating cybersecurity technology into technical products from their inception. In this role, you collaborate with others to create products that deliver functionality, ease of use, and performance while ensuring the products offer the necessary security. 

3. Cybersecurity content writer

Average annual salary: $96,8386

Requirements: Technical writers usually have a bachelor’s degree in English or a similar subject, but you can also pursue a degree in IT or earn a degree focused on cybersecurity.

Cybersecurity is big business. With it comes the need for technical content writers for cybersecurity publications, news stories, and web copy for cybersecurity companies. In this position, you would also utilize your written language abilities to ensure your coworkers understand the nature of cyberthreats and the company’s security goals. A technical writer must be able to take complicated technical details and information and turn it into something understandable among those without a technical background.

4. Cybersecurity data protection officer

Average annual salary: $93,988

Requirements: While some employers might require a bachelor’s degree in computer science or information technology to hire a data protection officer, many companies, because of the shortage of cybersecurity workers, are willing to hire someone with an analytical mind and a passion for technology. Some employers believe that the right person can learn the more technical aspects of cybersecurity positions while performing their duties. You might also consider earning certifications related to the job, such as Certified Information Privacy Professional (CIPP).

A data protection officer looks after company data protection policies and strategies, ensuring data is secure from threats and hacks and compliant with data protection laws.

5. Cybersecurity risk and compliance manager

Average annual salary: $106,351

Requirements: While the work of a risk and compliance manager isn’t technical, understanding cybersecurity is integral, which is why having a bachelor’s in computer science or cybersecurity can be valuable. However, because much of your work can involve ensuring your company’s policies and security methods adhere to mandated regulations, other bachelor’s degrees for this position can be in business administration, law, or management, along with acquiring experience in risk management.

Risk and compliance managers who work in cybersecurity for a company analyze the risk of cyberattacks and ensure the company's cybersecurity strategies comply with laws, industry standards, and regulations. Risk and compliance managers conduct risk assessments and use the results to inform company policies to mitigate risk in the future, attempting to avoid phishing, malware, and ransomware attacks.

6. Marketing manager

Average annual salary: $82,726

Requirements: To work as a marketing manager, you generally need a bachelor’s degree in marketing and professional experience in this area. Sometimes, it can help if you know the cybersecurity industry if that’s where you want to build your career.

Marketing is important in all industries, and if this is your background, you’ll find opportunities in the cybersecurity industry. As a marketing manager in cybersecurity, you’ll focus on marketing campaigns to build a brand, sell products and services, and promote awareness about potential cybersecurity breaches and solutions.

7. PR officer

Average annual salary: $73,608

Requirements: To become a public relations (PR) officer, you usually need a bachelor’s degree in communications or business and experience in PR or the field you’re entering.

 A security breach within a company can harm its reputation. As a PR officer, you would be responsible for mitigating any issues a company has had when speaking to the press. On the positive side, a PR officer also develops strategies to promote the good work a company does, how cybersecurity functions are working well, and increase awareness of best practices. For some of your daily responsibilities in this position, you will likely write press releases, draft speeches for high-level executives, and assist in preserving the public’s perception of the company.

8. Accountant

Average annual salary: $76,078

Requirements: Cyberaccountants are, first and foremost, qualified accountants who also have knowledge and training in cybersecurity. The role requires you to have experience working as an accountant, with some training or experience in cybersecurity in risk analysis. It’s also possible to study for a degree in cybersecurity and accounting, combining the two disciplines.

Cyberattackers target financial companies and financial departments within other industries because of the amount of monetary data and client details they hold. For this reason, the role of an accountant in cybersecurity is critical. A cyberaccountant has knowledge and training in cybersecurity and can be the first line of defense if a cyberattack happens. In this position, some of your responsibilities could entail spotting suspicious activity connected with data breaches, collaborating with cybersecurity professionals, and creating a strategic approach for protecting assets.

9. Cybersecurity policy analyst

Average annual salary: $94,605

Requirements: You generally need a degree to work as a cybersecurity policy analyst. Some employers may require a master’s degree. Popular majors include political science, psychology, social policy, education, history, international relations, and social science.

A cybersecurity policy analyst looks at existing policies and evaluates them for relevance, effectiveness, and areas of improvement. In this role, you research other policies and relevant legislation and gauge public opinion and stakeholder input. You’ll also make recommendations for updating and improving policies. You can find many of these positions in the federal government, but organizations in scientific research and development and social advocacy groups hire cybersecurity policy analysts.

10. Cybersecurity legal advisor

Average annual salary: $117,106

Requirements: To work as a cybersecurity legal advisor, you must be a qualified legal professional with additional certifications in cybersecurity relating to cyberlaw and cybersecurity compliance. Additionally, you need a firm grasp of cybersecurity statutes and a detailed knowledge of privacy laws. It is possible to combine law and cybersecurity, such as a Master of Laws (LLM) with a concentration in cybersecurity when taking your degree, so you are uniquely skilled and qualified in both.

Cybersecurity legal advisors can work in-house or for an external firm and advise companies on legal issues relating to cybersecurity, such as security policies and compliance, security breaches, litigation, privacy and data protection, and managing records.

How to get started in a non-technical cybersecurity role

Working in cybersecurity doesn’t have to be technical, as long as you have expertise in a non-technical, relevant discipline and additional training and upskilling in cybersecurity to understand the industry.

The following details some of the steps to consider taking.

Relevant skills, experience, and qualifications

Working in a nontechnical cybersecurity role means bringing your field skills, experience, and qualifications to the role. For example, a cybersecurity legal professional is, first and foremost, a lawyer who has passed the bar.

In addition to knowing your chosen area of expertise, you need a solid understanding of cybersecurity. However, you don’t necessarily need another degree. You can build your knowledge through gaining experience, such as entry-level roles, volunteer work, attending conferences, and taking online courses, bootcamps, and certifications.

Cybersecurity certifications

Certifications are an excellent way of cementing and validating your cybersecurity knowledge. Adding a cybersecurity certification to your resume when you already have expertise in your chosen industry is a great way to move your non-technical career to the cybersecurity industry. Some certifications to consider include:

• CompTIA Security+

• Certified Information Systems Security Professional (CISSP™)

• GIAC Security Essentials (GSEC) certification

• Certified Information Security Manager™ (CISM™)

Getting started with Coursera

Transitioning to a career in cybersecurity with a non-technical background is more than possible if you have the desire to learn new information, an analytical mind, and an affinity for technology.

If you're considering moving your established non-technical career into the cybersecurity industry, consider taking a cybersecurity course or Professional Certificate to bolster your existing skills, qualifications, and experience while enhancing your resume. Excellent examples include the Google Cybersecurity Professional Certificate and the IBM Introduction to Cybersecurity Tools & Cyber Attacks, both offered on Coursera.