Content

Diversity means better results

We know that it's very challenging to design and implement systems that are highly resistant to malicious activity. We also know that diversity in teams produces better results. Why are there so few women and minorities in IT security?

In January I spoke alongside women leaders from NetApp, Symantec and Google on a panel at OWASP AppSec California. An audience member said, “The best managers I've had have been women. Are women better managers? Why?”

In my 10-plus years as a security practitioner, product manager and consultant, I've been told that I am calm in a crisis. That I'm an effective communicator. That I'm a great team leader. That I handle and resolve conflict well. 

I happen to be a woman. My gender doesn't matter, but my skills and actions do. The IT security field is full of interesting problems to solve. In this industry, there are far more jobs that need to be filled than there are qualified people to do the work. 

The advice that I give to students, friends and colleagues aspiring to be IT security leaders is the same regardless of gender or race:

Be committed. Make sure you really understand the problem you're trying to solve, then apply your talents and work hard. 

Learn everything you can. Attend community events and listen to the people that you respect. Study their work. Ask questions! Join industry groups. Take on a side project, or two.

Be opportunistic. If your job sucks, find a better one. Seek and leverage mentors who can see your potential and advise you beyond your own experience.

Take care of yourself. You will deliver the highest quality work when your heart, mind and body are well.

Leadership is about teamwork. The best teams are diverse. That's all there is to it.

Caroline Wong, security initiative director at Cigital is the author of Security Metrics, a Beginner's Guide.
Caroline Wong

Caroline Wong is the Chief Strategy Officer at Cobalt. As CSO, Caroline leads the Security, Community, and People teams at Cobalt. She brings a proven background in communications, cybersecurity, and experience delivering global programs to the role. Caroline’s close and practical information security knowledge stems from her broad experience as a Cigital consultant, a Symantec product manager, and day-to-day leadership roles at eBay and Zynga. Caroline also hosts the Humans of InfoSec podcast, teaches cybersecurity courses on LinkedIn Learning and has authored the popular textbook Security Metrics, A Beginner’s Guide. Caroline holds a bachelor’s degree in electrical engineering and computer sciences from UC Berkeley and a certificate in finance and accounting from Stanford University Graduate School of Business.

Related

DevSecOps Scanning Challenges & Tips

There are many ways to do DevSecOps, and each organization — each security team, even — uses a different approach. Questions such as how many environments you have and the frequency of deployment of those environments are important in understanding how to integrate a security scanner into your DevSecOps machinery. The ultimate goal is speed […]

It Should Be ‘Cybersecurity Culture Month’

It’s Cybersecurity Awareness Month, but security awareness is about much more than just dedicating a month to a few activities. Security awareness is a journey, requiring motivation along the way. And culture. Especially culture.That’s the point Proofpoint Cybersecurity Evangelist Brian Reed drove home in a recent appearance on Business Security Weekly.“If your security awareness program […]

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.