Cybersecurity Careers in Slovenia: Getting Started

The Slovenian cybersecurity job market is growing at a pace that far outstrips the supply of qualified professionals. With NIS2 creating new compliance obligations for hundreds of organizations, the demand for security talent has never been higher. As someone who became the country's first OSCE3-certified penetration tester, I want to share practical guidance for those looking to enter this field.

Entry Points

There is no single path into cybersecurity, but some entry points are more accessible than others in the Slovenian market.

• IT support with security focus: Many cybersecurity professionals started in helpdesk or system administration. These roles give you hands-on experience with technologies you will later need to secure. Companies like Telekom Slovenije, NLB, and government agencies regularly hire IT support staff.
• SOC analyst positions: Security Operations Center analyst roles are designed as entry-level security positions. You will learn to monitor events, triage alerts, and investigate incidents. Several Slovenian MSSPs maintain SOC teams.
• Junior penetration tester roles: Competitive but available. Demonstrate practical skills through CTF achievements or bug bounty participation. Validated findings on HackerOne or Bugcrowd strengthen your application significantly.
• Security operations in larger companies: Organizations like Krka, Petrol, and major banks have dedicated security teams that occasionally hire junior members.

Skills to Develop

Cybersecurity is about understanding how systems work, then understanding how they can be broken. Build a strong foundation before specializing.

• Networking fundamentals: Understand TCP/IP, DNS, HTTP/HTTPS, routing, and firewalls deeply. Set up a home lab with VLANs and firewall rules.
• Linux and Windows administration: In Slovenian organizations, Active Directory dominates. Understanding AD architecture, Group Policy, and Kerberos authentication is essential.
• Programming basics: Python is the most practical language for cybersecurity work. Familiarity with Bash, PowerShell, and basic web technologies is also valuable.
• Security concepts and frameworks: Study the OWASP Top 10 and MITRE ATT&CK framework. Practice on platforms like HackTheBox, TryHackMe, or PortSwigger Web Security Academy.

Certifications That Help

In the Slovenian market, certifications carry significant weight, especially for your first security role.

• CompTIA Security+: Covers broad security fundamentals. Widely recognized in Slovenia and useful for getting past HR screening.
• eJPT: An affordable, practical certification demonstrating hands-on testing ability. An excellent stepping stone toward advanced certifications.
• OSCP: The gold standard for penetration testing positions. Holding an OSCP in Slovenia immediately distinguishes you from most applicants.
• Cloud certifications (AWS/Azure): As organizations migrate to cloud, professionals understanding both cloud architecture and security are increasingly valuable.

Local Resources

Slovenia has a small but active cybersecurity community.

• Community events: Annual conferences organized by the Slovenian information security community are essential for building your professional network.
• University programs: FRI at the University of Ljubljana and FERI in Maribor offer security-related courses. Academic programs provide foundational knowledge and valuable peer networks.
• Local CTF competitions: Slovenian teams participate in international CTFs. Joining a team is an excellent way to learn collaboratively.
• SI-CERT resources: SI-CERT publishes advisories and annual reports in Slovenian that provide insight into the local threat landscape.

Building Your Path

The Slovenian market is small, opportunities are not always advertised, and personal reputation matters enormously. Start contributing to the community early: write blog posts, present at meetups, contribute to open-source security tools, and build a visible portfolio. One advantage of Slovenia's market size is accessibility. Senior professionals at SI-CERT, URSIV, and private companies are generally approachable and willing to mentor motivated newcomers.

Salary and Career Growth

Cybersecurity salaries in Slovenia have increased substantially, driven by the talent shortage and NIS2 demand. Experienced professionals with certifications like OSCP or OSCE3 command significantly higher compensation. Remote work with Western European companies has further pushed local salaries upward. Career progression typically moves toward specialization in offensive security, incident response, governance, or security architecture. With NIS2 creating sustained demand, there has never been a better time to start a cybersecurity career in Slovenia.