Activity
Mon
Wed
Fri
Sun
Dec
Jan
Feb
Mar
Apr
May
Jun
Jul
Aug
Sep
Oct
Nov
What is this?
Less
More

Memberships

Real Security Heretics

Public • 80 • Free

3 contributions to Real Security Heretics
A problem of confidence
One of the biggest problems I have seen in security leaders is a total lack of confidence. Many feel that they have 'blagged it' into their roles. They admit that they have a loose idea of what to do (based on the perfect world of the cert industry) but no idea how to do it. Plagued by doubt, they cling to compliance or IT shit that they at least understand. This doesn't do anything for their confidence as they realise that it's all imperfect. Does that sound familiar to anyone?
Poll
14 members have voted
1
10
New comment Jul '23
1 like • Jul '23
This is something i think the majority of people who do security feel including myself. I know of colleagues within my current org and previous 2 orgs who would feel the same.
0 likes • Jul '23
[attachment]
What do you need?
Here's a quick poll. What do you currently think that you need to learn or improve on to develop the next stage of your career?
Poll
21 members have voted
1
11
New comment Jul '23
2 likes • Jul '23
Most of these I need to drastically improve on
1 like • Jul '23
@Rich Diston I'm starting by working my way through The Surgery content available to me via the subscription. I've not long joined so there's a lot to get through and understand. I'm also currently saving for 2 of your courses that i'd love to attend (The REAL Security Practitioner and Security Risk Masterclass).
Have you ever had this?
Ever attended a security course and sat there thinking to yourself...'I've heard all this before.' Ever walked out of an exam with the feeling that 'none of that really makes any difference?' Ever got your cert renewal and debated just shitcanning it? Ever blagged your CPEs just to get over the line but never really learned anything new? Ever felt frustrated that the things you feel you need in your job aren't being taught? Ever had an instructor who couldn't answer questions and just pointed to the slides or book and said 'if it's not in there, don't worry about it?' Yeah, I reckon. Ever considered taking a different approach to this security lark? Or is this just 'the way it is' ?
2
15
New comment Jul '23
2 likes • Jun '23
The companies I’ve worked for have encouraged me to attend these courses with the expectation of being able to implement what I’ve learned after a couple of days staring at slides and someone reading off of them. Rarely do you get any actionable insight about implementation, pitfalls you may come across etc. Case in point I attended only last year and I’m none the wiser on the subject. Has anyone felt the pressure of having to implement something you don’t understand or agree with at your businesses? Do businesses do a disservice to their employees by sending them on these courses because they feel like they have to as a tick box exercise without thinking it through?
1-3 of 3
Mark Boyson
2
14points to level up
@mark-boyson-9948
Information Security Analyst, here to learn! I want to build my confidence through competence.

Active 453d ago
Joined Jun 17, 2023
powered by