On today’s episode, we’re breaking down phrases you’ve heard a million times: “security is everyone’s job,” “humans are the weakest link in the security chain,” “it’s not if you get breached, but when.” Returning guest Alyssa Miller drills into these comforting nostrums and explains why, even when they’re used for well-intended purposes, they often act to limit the conversation and the options, rather than address the hard work needed to overcome these evergreen problems. You’re not going to want to miss this one, folks! It’s all that, plus a little bit of book talk, today on Cyber Work!
– Start learning cybersecurity for free: https://www.infosecinstitute.com/free
– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast
– Get the Cybersecurity Career Guide by Alyssa Miller: https://alyssa.link/book
0:00 – Intro
1:38 – Alyssa’s tweet that inspired this episode
4:00 – Why you need to read the Cybersecurity Career Guide
9:10 – Cybersecurity platitudes and clichés
11:30 – Cliché 1: "It’s not if you get breached, but when"
18:44 – Cliché 2:"Just patch your shit"
24:58 – Cliché 3: "Users are the weakest link"
32:34 – Cliché 4: "Security is everyone’s job"
35:52 – Cliché 5: What is a "quality gate"?
44:14 – Cliché 6: "You just need passion to get hired"
48:14 – How to write a better cybersecurity job description
50:15 – Business value of diversity and inclusion
52:52 – Building a security champions program
55:12 – Where can you connect with Alyssa Miller?
56:44 – Outro
Infosec believes knowledge is power when fighting cybercrime. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and privacy training to stay cyber-safe at work and home. It’s our mission to equip all organizations and individuals with the know-how and confidence to outsmart cybercrime. Learn more at infosecinstitute.com.