“Take time to understand the risks and threats you face. It may not be beneficial for every organization to know which specific countries or criminal organizations are targeting them, but every organization should know what their “worst possible day” looks like.”
Twitter: @hacks4pancakes • Website: tisiphone.net
Lesley Carhart (GCIH, GREM, GCFA, GPEN, B.S. Network Technologies, DePaul University) is an 18-year IT industry veteran, including 9 years in information security (specifically, digital forensics and incident response). She speaks and writes about digital forensics and incident response, OSINT, and information security careers. She is highly involved in the Chicagoland information security community and is staff at Circle City Con in Indianapolis. Lesley is currently the principal threat hunter at Dragos, Inc. In her free time, she studies three martial arts, is a competitive pistol marksman, and is generally an all-around huge geek.
If there is one myth that you could debunk in cybersecurity, what would it be?
The organizations we work with are rarely in the business of security. We are security professionals providing a service to organizations with their own missions. The sooner we understand that, the sooner we can stop asking counterproductive questions such as “Why don’t you just…” regarding IT decisions. A good security professional studies ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month, and much more.
