Get AI summaries of any video or article — Sign up free
the hacker’s roadmap (how to get started in IT in 2025) thumbnail

the hacker’s roadmap (how to get started in IT in 2025)

NetworkChuck·
6 min read

Based on NetworkChuck's video on YouTube. If you like this content, support the original creators by watching, liking and subscribing to their content.

TL;DR

Apply for help desk or technical support roles immediately to gain experience and learn what employers demand through real interviews.

Briefing

Getting an IT job in 2025 starts with experience, not expertise: apply for help desk or technical support roles immediately—even before building deep skills—then stack certifications and hands-on projects on top. The roadmap is built around a simple premise: nothing beats resume-ready work history, and the fastest way to learn what employers actually want is to interview while studying.

“Phase zero” is the unconventional move. Instead of waiting to finish training, the plan pushes job applications right away and treats the process itself as education. Help desk jobs are positioned as the typical entry point, with customer service skills often mattering more than advanced technical experience. The advice is to tailor a resume toward the job being targeted (for example, translating prior work into IT-relevant tasks like fixing printers), polish LinkedIn, and keep applying consistently. Networking is folded in early too—following IT people on Twitter/X, joining Discord communities, and building relationships with mentors—because many opportunities come through connections.

“Phase one” focuses on foundational IT credentials and broad technical literacy. The core recommendation is CompTIA A+ as the help-desk certification that helps clear HR filters; the value isn’t just knowledge but proof that hiring managers can quickly interpret. The A+ is described as an “IT buffet,” covering enough breadth to help beginners decide a direction later. While studying, the roadmap adds two supporting tracks: Linux and coding (specifically Python or Go). The suggested pace is light but consistent—such as 30 minutes each on Linux and Python one day a week—using free resources like Professor Messer for A+ and YouTube courses for Linux/Python. To make learning tangible, it calls for a home lab: install VirtualBox and Ubuntu, practice networking with tools like pfSense, and deploy small services (like a DNS server) that can become “resume building moments.” Phase one is estimated at two to three months.

“Phase two” shifts into security credentials without requiring a full commitment to hacking. CompTIA Security+ is the centerpiece, framed as both a knowledge “buffet” and a checkbox credential—especially for government-adjacent roles tied to DoD 8570 requirements. Linux and Python continue, but with security flavor. The roadmap suggests learning Linux via OverTheWire’s Bandit path, then building small projects such as a Python network scanner to identify open ports. Home lab automation and continued job applications remain constant. Phase two is also estimated at two to three months.

“Phase three” becomes networking-first, anchored by a certification choice: Cisco CCNA (Cisco-focused, harder, more practical with CLI and automation) or CompTIA Network+. The roadmap recommends making Linux/Python study networking-focused because CCNA automation leans on scripting and interacting with routers/switches. It also pushes a more serious home network setup—replacing a home router with pfSense or even experimenting with alternatives like Unifi—then monitoring network performance and documenting it for the resume. Phase three typically takes two to four months depending on the certification.

A short “phase 3.5” is reserved for the job hunt: if no job exists by then, full-time effort should go into applying, interviewing, and leveraging the accumulated A+, Security+, Linux/Python, and networking credential.

After that, the roadmap branches. For cybersecurity’s offensive side (red teaming / ethical hacking), it recommends a sequence of practical entry certifications: EJPT or PenTest+ first, then Hack The Box’s CPTS, and eventually OSCP as the “crown jewel.” It also encourages CTF practice using beginner-friendly platforms like PicoCTF. Finally, it argues that college is optional if certifications and competency are proven, and it emphasizes adaptability—skipping phases when skills already exist or when job opportunities appear—while never skipping the underlying learning needed to succeed in the role.

Cornell Notes

The roadmap for starting in IT in 2025 is built around getting job experience fast, then using certifications and hands-on practice to accelerate career growth. “Phase zero” urges applying for help desk or technical support roles immediately, even with limited skills, because experience and interviews teach what employers want. “Phase one” centers on CompTIA A+ plus consistent Linux and Python practice, backed by a home lab and resume-ready projects. “Phase two” adds CompTIA Security+ to build security fundamentals and satisfy common hiring checkboxes, again supported by Linux/Python and small security projects. “Phase three” shifts to networking with either Cisco CCNA or CompTIA Network+, followed by “phase 3.5” focused on landing the job before moving into specialized paths like red teaming.

Why does “phase zero” push job applications before studying enough to feel ready?

The roadmap treats experience as the fastest resume booster and the best feedback loop. Help desk and technical support roles are described as typical entry points where customer service often matters more than advanced technical experience. Applying early also reveals what job descriptions actually require, while interviews and rejection become learning. The plan also emphasizes tailoring resumes to the target role (e.g., translating past work into IT-relevant tasks) and building LinkedIn plus networking habits (Twitter/X, Discord, and mentors).

What role does CompTIA A+ play, and why is it recommended even if someone could self-study the material?

CompTIA A+ is positioned as both knowledge and proof. The roadmap argues that self-study can build competence, but the certification helps hiring managers quickly interpret capability and pass HR filters. It’s described as an “IT buffet” that covers enough breadth to sample multiple paths early, which matters when beginners don’t yet know whether they’ll prefer networking, security, or other directions. It also notes the A+ exam structure (two exams) and the cost uncertainty for 2025 exams.

How should Linux and Python fit into the A+ and Security+ phases without overwhelming a beginner?

Linux and Python are treated as ongoing side skills rather than full-time replacements for the main certification goal. The suggested approach is small, consistent time blocks—such as one day a week with 30 minutes Linux and 30 minutes Python (or longer sessions if manageable). Resources are recommended for both certification study (Professor Messer for A+) and general Linux/Python learning (free YouTube courses). The roadmap repeatedly links these skills to later relevance: Linux terminals and scripting/automation show up across IT roles, and security work later also depends on them.

What makes Security+ useful beyond learning security concepts?

Security+ is framed as a “checkbox cert” that many employers expect by default, especially for government-related roles tied to DoD 8570 minimum requirements. That means it can function as a credential gate even for people who aren’t aiming to become deep security specialists immediately. The roadmap still keeps security learning practical by pairing Security+ with security-flavored Linux practice (OverTheWire Bandit) and Python projects like scanning networks for open ports.

How do CCNA and Network+ differ in the roadmap’s recommended networking phase?

Cisco CCNA is described as harder and more valuable for networking engineering/admin paths because it’s Cisco-focused and includes practical skills like using Cisco CLI and automation/security products. CompTIA Network+ is described as vendor-neutral and easier to fit when someone wants networking fundamentals without committing to Cisco-specific tooling. The roadmap also notes pricing differences (Network+ one exam at $369; CCNA one exam at $300) and recommends continuing Linux/Python study in a networking-focused way, especially for CCNA automation.

What certification path does the roadmap suggest for offensive security after building the IT foundation?

For red teaming / ethical hacking, it recommends starting with a junior-level credential such as EJPT or PenTest+. EJPT is described as more approachable and includes training via INE for three months, while PenTest+ is described as more widely recognized. The next step is Hack The Box’s CPTS, which requires completing Hack The Box Academy modules. The long-term “gold standard” goal is OSCP, described as the crown jewel, with the roadmap noting that OSCP recently allows ChatGPT use during the exam.

Review Questions

  1. Which parts of the roadmap are designed to produce resume-ready proof (certifications and projects) versus pure skill-building (Linux/Python practice)?
  2. If someone chooses CCNA over Network+, what additional Linux/Python emphasis does the roadmap recommend and why?
  3. How does the roadmap justify “phase 3.5,” and what should happen if a job still hasn’t been secured by then?

Key Points

  1. 1

    Apply for help desk or technical support roles immediately to gain experience and learn what employers demand through real interviews.

  2. 2

    Tailor resumes and LinkedIn to the target IT role, translating past work into concrete IT-relevant tasks (e.g., printer troubleshooting).

  3. 3

    Use CompTIA A+ as a credential that helps clear HR filters, not just as a knowledge goal.

  4. 4

    Maintain consistent Linux and Python practice alongside certifications, and convert learning into home-lab projects that can be listed on a resume.

  5. 5

    Earn CompTIA Security+ to build security fundamentals and satisfy common hiring checkbox requirements, including government-adjacent expectations tied to DoD 8570.

  6. 6

    Choose a networking certification track (Cisco CCNA for Cisco-focused depth or CompTIA Network+ for vendor-neutral fundamentals) and document home network experiments.

  7. 7

    Treat “phase 3.5” as a job-first sprint: keep studying only enough to maintain momentum while applying broadly and interviewing.

Highlights

“Phase zero” insists on applying for IT jobs immediately, arguing that experience and interview feedback beat waiting to feel fully prepared.
CompTIA A+ is framed as an HR filter pass—proof of knowledge that hiring managers can quickly interpret.
Security+ is positioned as both a learning tool and a checkbox credential tied to DoD 8570 minimum requirements.
Cisco CCNA is described as harder but more practically valuable due to Cisco CLI and automation/security coverage.
For offensive security, the roadmap suggests EJPT/PenTest+ → Hack The Box CPTS → OSCP, with CTF practice (like PicoCTF) sprinkled throughout.

Topics

  • IT Job Roadmap 2025
  • CompTIA A+
  • Security+
  • Home Lab Projects
  • Networking Certifications
  • Red Team Certifications
  • CTFs

Mentioned

  • John Hammond
  • Jeremy Charra
  • Aaron
  • IT
  • A+
  • HR
  • CLI
  • PFsense
  • DNS
  • PF
  • Ubuntu
  • Linux
  • Python
  • Go
  • Security+
  • DoD 8570
  • CCNA
  • CTF
  • EJPT
  • PenTest Plus
  • CPTS
  • OSCP
  • INE
  • INE
  • INE
  • INE
  • INE
  • INE

Get summaries like this for any content

Videos, articles, research papers — all summarized by AI and searchable in one place.

Start building your library