I got into security in the 80s. Auditors came in and you would have the technology group managing passwords on the mainframe. They asked for a separation of duties. QA was the independent group and we became the security guys.
Q: What do you like most about your job?
It's nice to be in a position that when you decide what a good approach is, you can make it happen rather than pass it onto someone else.
Q: Anything that annoys?
I like what I do. My job annoys my wife more than me. In this electronic world, you spend 20 hours at home going through emails. My wife tells me: "Put that down, your food is getting cold."
Q: Any project or initiative you are most proud of?
I ran the effort for the Philadelphia Stock Exchange in simulating the American Stock Exchange after 9/11. We integrated their exchange into ours. There was a bit of patriotism [involved in that]. The terrorists did not stop all the exchanges from being up.
Q: How do you describe your job to strangers?
Most people are not aware of all the steps, processes and layers of protection you need to put in place in most organizations, or the amount of support that's needed. You tell them, "It's a big job, it's bigger than you can imagine."
Q: Any advice for others?
Never stop learning, but you can't get into information overload. Pick and choose what's appropriate for your biz. Don't get complacent.