Why everyone should consider a career in cybersecurity
On January 24th, 2018 I opened a new discussion about diversity in cybersecurity with the #includecybersecuritychat on Twitter. Over the hour-long discussion I asked four questions for almost ninety people to discuss and debate. Here’s what we learned, including excerpts from the chat.
Q1. What are some of the top benefits of a career in #cybersecurity?
The consensus was that cybersecurity jobs are fluid and provide a variety of challenges daily. Cybersecurity roles support the public good, and help individuals, families and companies stay safe online. People working in cybersecurity are part of supportive teams with great colleagues.
A1: Rewarding & challenging being on the frontline in the global #infosec battle. You are helping firms ensure they don’t get robbed of their data assets. Helping your friends, family & especially grandparents not become victims of scammers & phishers. #includecybersecuritychat
— Ben Rothke (@benrothke) January 24, 2018
@kaynemcgladrey The top benefit of a career in cybersecurity is helping people stay safe online and staying on the cutting-edge yourself. #includecybersecuritychat
— Brent Kirkpatrick (@BrentKirkpatri3) January 24, 2018
A1: Benefit of a career in tech in general is how quickly things change, it’s never boring. When it comes to cybersec that increases even more and you get to pull on interdisciplinary skills to be successful. Jobs/careers are always unique w many options #includecybersecuritychat
— Diana Nolting (@DianaNolting) January 24, 2018
A1 – #includecybersecuritychat – Top benefits. First off, too many to list in my opinion. The job provides variety, challenges, above-average pay, security (no pun intended) because if you are good at your job you are almost untouchable. It’s also a job with power & respect.
— Jeff Cutler (@JeffCutler) January 24, 2018
A1. Part 2. I also think there is an important aspect of #cybersecurity that is fundamentally about helping people and organizations enjoy a safe digital life. #includecybersecuritychat
— Jessica Marie (@thoughtcosm) January 24, 2018
In addition to great colleagues, constant challenges, and good professional opportunities, you get a chance to work on one of the most important national security challenges of our time, which impacts security, privacy and is key to protecting democracy. #includecybersecuritychat
— Andrea L Limbago (@limbagoa) January 24, 2018
Q2. What are the top skills to have if you want to enter the #cybersecurity field?
This question prompted a debate about the needs for hard skills (coding, systems administration) vs soft skills (communications, emotional intelligence). Speakers questioned the value of four-year “traditional” degrees given the rapidly evolving cyberweapons and defensive technologies. Most speakers agreed that tenacity and passion were necessary skills to “keep shoveling against the tide of new threats”.
I’d add to this that it should be important to remove that air of mystery 7 empower all tech roles especially (but really all job roles), to feel responsible for playing a part in cybersecurity. It should be as core as typing is to almost all jobs. #includecybersecuritychat
— Diana Nolting (@DianaNolting) January 24, 2018
A2: Solid fundamentals in networking, system administration (Windows and *nix), and programming structure. Ability to convey ideas in writing and in presentations. Motivation to self study. #includecybersecuritychat
— Lesley Carhart (@hacks4pancakes) January 24, 2018
A2 – #includecybersecuritychat – Top skills. You need to have an inquisitive mind, the tenacity to track down the cause of breaches, the patience to keep shoveling against the tide of new threats, and good communication skills to impart knowledge to others.
— Jeff Cutler (@JeffCutler) January 24, 2018
A2 – Most important skills.
What helped me was 1)communications.
2)Determination or persistence. 3)the desire to learn
4) People skills like collaboration and cooperation.
5)Passion. Love what you do and it gets noticed 😀#includecybersecuritychat— 3ncr1pt3d (@3ncr1pt3d) January 24, 2018
Big Proponent of this. Thinking outside of the 4 year institution narrative is pivotal. #includecybersecuritychat #Cybersecurity https://t.co/yxygWidjis
— Rudy Sanchez (@UberRadRudy) January 24, 2018
I’ve always despised the culture of “you must have a degree to do X or apply here”. The degree alone isn’t a testament of your ability. I think #education needs a rework and the false illusion of these pieces of paper needs to be changed. #includecybersecuritychat
— Mark Christian (@MChristian485) January 24, 2018
Q3. Was there someone in particular who inspired you to get into technology? Was it a famous person, a teacher, a friend, a family member?
This answer was surprising as many speakers got their start on technology by writing their own video games. Science fiction books inspired several people, and books and documentaries about famous hackers. Teachers and parents were also cited as inspirational figures for getting involved in technology, including a story of a CompSci professor who’d encrypted the final exam.
A3. For me, it was a computer given to me by my parents when I was 11. I loved text adventures, but TI stopped making the computer and thus no more games. I had a manual in BASIC though, so learned to write my own parser. It just expanded from there. #includecybersecuritychat
— Joe Johaneman (@dogboi) January 24, 2018
Hard to say. I got started by screwing around on university computer systems, figuring out how to do things I should not be doing. Read books on Mitnick and others in the 90s. Guess my buddy Jeff Hamby introduced me to the networked world. #includecybersecuritychat
— Irongeek̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂̂ (@irongeek_adc) January 24, 2018
A3: #includecybersecuritychat I was a grad student in #Compsci when my prof encrypted the final. That hooked me on #Cybersecurity !
— karenworstell (@karenworstell) January 24, 2018
Hello everyone, for me it was video games and developing basic ones in the 90’s
#includecybersecuritychat— George Gerchow (@georgegerchow) January 24, 2018
#includecybersecuritychat
When I was in #highschool, my #mother encouraged me to consider a career in #STEM because she saw I was interested in #math and #science. I pursued #cybersecurity specifically because I loved the idea of doing #detective work on a computer.— Roselle Safran (@RoselleSafran) January 24, 2018
#includecybersecuritychat A3
The only thing that comes to mind atm is that my 1st computer class teacher was female, so I never had the thought that I _couldn’t_ get into tech work. My only regret is that I didn’t get into it sooner. But, I’m here now. https://t.co/75KqfbxyLC— InfoSecSherpa (@InfoSecSherpa) January 24, 2018
I saw where I wanted to go & studied nights & weekends to get there; on my own & in classes. If people said, “No.” I said, “Then I’ll learn it on my own.” Make it happen by committing to yourself. Don’t wait for someone to give you permission. #includecybersecuritychat
— Diana Nolting (@DianaNolting) January 24, 2018
Q4. What are your predictions for the future of #cybersecurity globally?
The Internet of Things (IoT) was a primary concern for the audience given the comparable lack of security controls in consumer devices. There was also a discussion on the likely increase of regulations after GDPR, and how organizations may try to work around the regulatory controls. If there was a consensus, it’s that we have not yet hit bottom and things will get worse than in 2017.
Mobile and IOT. When I think about the IOT devices in my home and how they are never patched, I find it extremely worrisome. Smart plugs, smart speakers, etc, etc. It’s really a disaster waiting to happen. #includecybersecuritychat
— Joe Johaneman (@dogboi) January 24, 2018
A4 predictions are hard, but one thing I know for sure: revelations like Meltdown & Spectre have only just started. We are operating as a society at the limits of our ability to understand the technology we are developing & all it’s implications & risks #includecybersecuritychat
— Michelle D’israeli (@MDisraeli) January 24, 2018
Regulations will continue to rise! GDPR will ht a few large companies and then die down. It’s Y2K panic #includecybersecuritychat
— George Gerchow (@georgegerchow) January 24, 2018
Eventually we will see people hacking the regulations themselves. #includecybersecuritychat
— Brent Kirkpatrick (@BrentKirkpatri3) January 24, 2018
A4. More of the same except escalated with capabilities diffused and more actors getting into the game as long as there are no repercussions. Also, more integration of hacks & disinformation; data veracity within the breaches will be a challenge. #includecybersecuritychat
— Andrea L Limbago (@limbagoa) January 24, 2018
And worse yet when you think about all these new #IoT cars and “connected systems” that can be #hacked to gain control over a moving vehicle!#includecybersecuritychat
— Mark Christian (@MChristian485) January 24, 2018
The next #includecybersecuritychat will be on February 21st at 9 AM PST / 12 PM EST.
To learn about coming events, visit http://includecybersecurity.com.