One thing I talk about when speaking on information security careers is something that many overlook yet it can make or break our success in this field. It’s learning from others and continually educating yourself throughout your career. A lot of us in IT are pretty closed-minded. It’s not just toddlers and teenagers that think they know it all – it’s often ourselves and our peers. A typical mindset is that information security’s the top rung of the IT ladder. Once you’re here, you’re officially “all-knowing”. If you’ve been here a while and have gotten some good experience, there’s certainly no need to better yourself to get to the next level.
I had this same mindset out of college after I obtained my bachelor’s degree I thought “I now officially know everything there is to know about technology…and computers…and networks”. Ha! Little did I know that I, in fact, knew very little – especially once I started attending seminars and conferences and reading what others are writing about IT and security. I realized that I’ll need to constantly learn new things if I’m going to keep up – much less take things to the next level. It’s a key secret to success in our field than so many people in IT overlook.
I recently gave a presentation at a local university to a group of graduating seniors outlining what it takes to succeed in information security. I had handouts with fill-in-the-blanks and encouraged everyone to email me for a copy of the slides and if they ever have any questions. Guess how many people out of the class took notes during my presentation and followed up afterwards? One. Yep, the one guy who was the most eager to learn struck me as the guy least like me when I was in school.
Be willing to learn from others. Every day there are new books, magazines, articles, and blog postings chock full of information about our field. It’s conference time as well so see which shows you can afford and get the most out of. Be it tools, techniques, policies, or general perspectives, once you open your mind – and take the time to learn – new information, you’ll be amazed at how you can enhance your career and build your expertise. I’ve done this in my own personal life with real estate, car racing, and more. I’ve simply put my head down into books, listened to audio programs while driving around, and within a very short period of time have made major improvements. It had such an impact that it inspired me to create Security On Wheels so I can help others build their expertise in this field and take their information security knowledge to the next level.
There’s nothing holding you back. Read, read, and read some more. When it comes to attending security-related presentations, be the person taking notes at the front of the room. Ask questions, ask for copies of the presenter’s slides, and re-read your information once you return the office. By all means try to avoid the belief I once had that there’s no need to learn new things. Being honest with yourself by admitting you may not know as much about security as you need to is not a weakness. It shows character and confidence.
It’s this open-mindedness and eagerness to better oneself that separates the top people in their fields from everyone else just going through the motions in their ho-hum jobs every day.
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”