You could go into infosec but honestly the industry in general does security because of regulations. They consider it a massive cost centre.
Pentesting is always an option but it requires considerable skills. Otherwise just look towards government security contracts
In that case one should install a MFA application via a Linux chroot on their laptop. Throw away both the phone and SIM