Hello, I'm going to be starting in IT Auditing/Attestation role with one of the big 4 within the next month. I was wondering if it is possible to transition into a different position/practice within advisory (such as cyber security) after working and putting in time in attestation? If it is possible to transition, how difficult is it to do so and how would it work? Would I go through HR or network and speak with someone that is in cyber security?
Ideally, I wouldn't want to be sucked in to doing IT auditing for the rest of my career and not be able to explore different practices. I'd like to be able to 'wear multiple hats' and be exposed and gain experience in various practices within IT.