What are YOU doing to give back to the security community?
Someone has played a large role in helping us become inspired and motivated to develop as an information security practitioner. We certainly did not get where we are today on our own. Without a doubt, I have been fortunate to have learned from skilled security practitioners who have directly shaped my career growth - many may never fully recognize that impact. It remains a priority for me to lean into the direction of helping others grow and develop into the very best security practitioner they can become. A favorite topic of mine is sharing a lesson learned that quite often revolves around "from now I will always" and "never again will I" do that again.
We can all benefit from others successes and often times even more by others failures. There is absolutely no need to repeat the lessons already learned by others. By being intentional about growth, we can all improve and get wisdom as cheaply as you can.
Several ideas to get you inspired:
- Ask yourself regularly "Who can I share that lesson with”
- Establish an informal mentoring program at your $DayJob
- Serve in the leadership of your local security group such as BSides, ISSA, InfraGard, ECTF, OWASP
- Volunteer at your next local information security event
- Reach outside our information security community
What one thing can you commit to do next week to give back? Let us know in the comments area!
Keywords: Lessons Learned
6 comment(s)
My next class:
Security Culture for Leaders | Amsterdam | Oct 7th - Oct 11th 2024 |
×
Diary Archives
Comments
Anonymous
Aug 20th 2016
8 years ago
Russell
Anonymous
Aug 20th 2016
8 years ago
Russell
Anonymous
Aug 20th 2016
8 years ago
- simply share IPs, hashes, etc. on sites like Open Threat Exchange, Virus Total ... so that others can see what you've seen
- also make sure to add meaningful comments/notes when I post things on sites like Open Threat Exchange, Virus Total, etc. so others can understand and have context around why the IoC was posted
- blog about how malicious traffic or scripts work for ones that I understand so that others don't have to re-invent the wheel
- share malicious or suspicious scripts and traffic that I do not understand so at a minimum others can know that it exists and has been seen by others
Anonymous
Aug 22nd 2016
8 years ago
Teaching them about the engineering processes for requirements, analysis and design. Highlighting the different testing strategies and the SDLC, Top 4, OWASP & general auditing tools really gets them excited once they've completed a system. Also how to greenit (re-use old tech) and of course the importance of ethics. Give it a go and share with the next gen.
Anonymous
Aug 24th 2016
8 years ago
There are teams all over the US looking for industry volunteer mentors. I've been one for 6 years and find it very fulfilling to develop next-generation cyber professionals.
See http://www.uscyberpatriot.org/.
Anonymous
Aug 25th 2016
8 years ago