I've found No Starch Press to have consistently excellent content and would rate them above Packt, as Packt seems to be a little hit or miss. More on reddit.com

BLUF/TLDR: The Phoenix Project and The Unicorn Project are good reads; Hacking APIs is a good look at the near horizon; Offensive Countermeasures is a good look at strategic adaptation to threats. Technical and Cybersecurity specific Hacking APIs https://nostarch.com/hacking-apis For experienced professionals, this is a good window into the types of attacks that you will need to defend against/simulate/emulate given how the future of computing is shaping up; for new folks in the field, this is a good starting point to see how you can put the wide variety of topics and concepts to practical use. Offensive Countermeasures: The Art of Active Defense https://www.amazon.com/Offensive-Countermeasures-Art-Active-Defense-ebook/dp/B00DQSQ7QY Good coverage and accessible-enough approach to looking at resilience and defensibility on a more granular scale than "reactive-proactive-hack back" thinking. 11 Strategies of a World-Class Cybersecurity Operations Center https://www.mitre.org/news-insights/publication/11-strategies-world-class-cybersecurity-operations-center A decent look at SOC capabilities that can elevate resilience and defensibility, but take it with a grain of salt: very few organizations would be able to implement everything described and most organizations don't need to implement any the capabilities to the fullest, most mature extent. Basically, the title should be understood to mean truly world-class, not hyperbole. Technical and Cybersecurity-adjacent How to Measure Anything in Cybersecurity Risk https://www.amazon.com/How-Measure-Anything-Cybersecurity-Risk/dp/1119085292/ A different take on addressing the communication breakdown between technical cybersecurity professionals and business management/leadership that is more accessible, understandable, and realistic at the baseline level than fully fledged enterprise risk management or quantitative risk analysis frameworks like NIST RMF or the FAIR/OpenFAIR models. Solutions Architect's Handbook https://www.packtpub.com/product/solutions-architects-handbook/9781838645649 IMHO, most technical cybersecurity professionals are focused on the micro: the specific vulnerability or malware strain or technology. The approach in this book to helping introduce and contextualize architecture from the solution perspective helped materialize a different understanding of architecture and resilient defensibility for me. Maybe in large part to other contemporary experiences, I improved my ability to zoom in to the micro, out to the macro, AND to add more granular steps on that spectrum. As an example, I stopped looking at controls as checks and balances and I stopped looking at security as a counterweight to convenience and starting looking at how controls implemented in support of full systems serve as an interwoven fabric instead of dis-integrated layers. Non-technical and Cybersecurity-specific: Tribe of Hackers https://www.amazon.com/Tribe-Hackers-Cybersecurity-Advice-World/dp/1119643376 There's a series of these (this one, an offensive-focused one, and a leadership focused on), they're all pretty good. As much for the reader just looking to pick up some wisdom as anything else. Cybersecurity for Business https://www.amazon.com/Cybersecurity-Business-Organization-Wide-Strategies-Ensure/dp/1398606146 A comprehensive primer on approaching cybersecurity as a core strategic competency vice a technology-specific concern. Non-technical and not Cybersecurity-specific The Phoenix Project and The Unicorn Project https://www.amazon.com/Phoenix-Project-DevOps-Helping-Business/dp/1942788290 and https://www.amazon.com/Unicorn-Project-Developers-Disruption-Thriving/dp/1942788762 DevOps centric novels that tell the story of an organization coming to grips with, addressing, and thriving through transformation away from legacy operating models and technical debt. Out of all the books on this list, I think these two are the most important to read. Thinking Fast and Slow https://www.amazon.com/Thinking-Fast-Slow-Daniel-Kahneman/dp/0374533555 A deeper dive into how the brain's evolved capabilities are best utilized. For example, I found this very helpful when considering why some social engineering and awareness training efforts are so much more effective than others. How to Lead When You're Not in Charge https://www.amazon.com/How-Lead-When-Youre-Charge/dp/0310531578 I'm not religious so I found the heavy church/religion influence a little annoying, but the substance and message in this book is not religion or church focused. The Boston Consulting Group on Strategy https://www.amazon.com/Boston-Consulting-Group-Strategy-Perspectives/dp/0471757225 This is a VERY DEEP cut but worth the read to get a better understanding of what makes a business competitive. IMHO, the most difficult skill for cybersecurity professionals to master is the ability to clearly articulate how a cybersecurity initiative links to a business strategy. If you can understand how competitiveness works you can better understand how cybersecurity supports/enables/protects a business's competitiveness. I hope that helps! More on reddit.com

Don't dive straight into cyber security. Explore networking (Cisco CCNA etc.). Understand frameworks such as Cyber Kill Chain and Pen-testing and learn phase by phase. Penetration Testing by Georgia Weidman is quite decent as well. More on reddit.com

Kinda just anything you are interested in. I mean, that sounds super cliche' but the reality is, it's a broad field. There's endpoint security, network security. Pentesting, compliance. There's just so much to explore. My 2cents though, start with some history. Be able to speak the lingo and live the war stories out with potential peers who've been in it for a long period of time. Asking a coworker about eternal blue  or what did they think when stuxnet was circulating the news are huge ways to begin connecting with individuals in the field. Personally, I love Sandworm and Tracers in the dark for this reason. But there are other books you can read like from 'hacker legend Kevin Mitnick.' To get a little sense on how hackers kinda stumbled into the scene through phone phreaking. I'll end there. If you want technical resources start by figuring your niche first. If you want broad security concepts read some comptia books. More on reddit.com