Year 1 — Foundation (college 1st/2nd year)
Complete 30+ Cyfotok labs. Focus SQLi, XSS, auth bugs. Maintain weekly streak. Join Tamil infosec Telegram/Discord groups. Write LinkedIn posts in English summarizing what you learned — one per lab.
Year 2 — Specialization
Pick a track: web app pentesting, SOC/blue team, or bug bounty. Finish a Cyfotok learning path for certificate. Start TryHackMe/Cyfotok hard labs. Contribute to college CTF team if available.
Year 3 — Placements & internships
Apply for security intern roles. Highlight Cyfotok certificates, GitHub writeups, CTF rankings. Target MSSPs, product companies, banks (they hire SOC analysts). Chennai, Bangalore, Hyderabad have most openings.
Salary expectations (India, 2025-2026)
Fresher SOC analyst: ₹3-6 LPA. Junior pentester: ₹5-10 LPA. With OSCP + 1 year exp: ₹8-15 LPA. Bug bounty is variable — top hunters earn more but inconsistent. Tamil medium is not a salary factor; skills are.