“Wendy personifies grace under pressure,” says Mike Rothman, a consultant with Securosis. “She works through everything in front of her with a great sense of humor, and that is inspirational. On the job front, she brings a broad perspective to her job leading 451’s security team. She leads by example and has been able to build a great team at 451 Research.
In 2010 she joined 451 Research as a senior analyst, and she now serves as research director for the information security practice covering many different areas, with a heavy focus on application security, security services and threat intelligence.
Rothman notes that Nather is modest and unassuming, but, he says, “when you get to know her you find a depth of intellect, wit, perspective and caring that is unique. Our industry is better because she’s in it.”
Nather emphasizes the importance of security as a service rather than a control mechanism. She believes there is much work to be done in educating leaders about risk and to raise some organizations out of what she refers to as the security poverty line.
“I firmly believe that for most organizations, security functions best when it acts as a service organization, not a control organization,” Nather says. “It is there to help the rest of IT and the business – which includes figuring out how to secure the infrastructure and business processes without getting too much in the way.”
As a CISO, she says she has walked business leaders through risk assessments and advised them on decisions that addressed the risk as they saw it. “There is no point in fighting with your own management. Having said that, we still have a long way to go to educate executives on the real risks out there.”