Groundhog Day?

What are your biggest challenges?

One of the biggest challenges I think we have in the security space is the feeling of facing the same challenges over and over again.

It feels very cyclical between feeling like we are making incredible strides and security, and then seeing headlines of breaches being caused by the same thing over and over and over again.

I’ve gone through this cycle several times over the last 10+ years in security, but feel that I have finally broken myself out of the cycle of peaks and valleys by focusing on seeing the real changes being made.

Attackers will continue to be attackers and will go after whatever they can to succeed, but we cannot beat ourselves up as an industry for what some organizations are doing or are not doing.

Focus on making progress one step at a time in the environment(s) you can either directly make or influence change.

Don’t get beat up by the FUD in the news.

Identify realistic goals and then back into how you will measure progress towards those goals, and avoid the vanity metrics.

Focus on the basics. They’re simple, but they’re not easy.