3 minute read
A real hard look
CRAIG FORD
Cyber Enthusiast, Ethical Hacker, Author of A hacker I am vol1 & vol2, Male Champion of Change, Special Recognition award winner at 2021 Australian Women in Security Awards
COLUMN
A real hard look
Over the last few months I have taken a really hard look at myself and the industry, at what I have achieved and at the state of the industry. I have asked myself: have I made a difference? Does what I do matter in the slightest?
Honestly, it is probably just the slightest ripple in a massive pond, but every ripple has an effect.
I think, as we become more successful in our lives, as we mature, we start to self-reflect and think about the marks we will leave behind when we are no longer on this earth. My books, these articles, podcasts and even my contributions to AISA are my way of leaving something behind. I try to share my knowledge and help the next generation so when the members of that next generation are ready to take the reins from ours they will, hopefully, have the knowledge and have learnt the lessons to guide them to make fewer mistakes than I, you or all of us together.
If we are unable to learn, change paths and adapt to what is to come, we have already lost. I see the truth of that in the ways we bring new people into the industry. We are so stuck in our old ways and hung up on experience and certifications that we lose sight of what we are really trying to achieve: bring in raw talent to help find ways to better protect ourselves.
To me, it is crazy to demand certifications for technologies that are out of date and to require degrees that do not include hands-on experience in their curriculums.
Now, before I move on, I value certifications and degrees. I have some certifications and two master’s degrees I have worked very hard to gain. They have taught me a lot, and made me the person I am today. However, that does not make them the only way, or even the best way, for everyone to get into the industry. I have a young pentester, Bailey, in my team at Baidam. He is a complete natural who just gets it. He has the raw talent and drive to go out there, find something and just keep pulling at the threads until he achieves his aim. He is a natural hunter with the perfect pentester mindset. He does not have a couple of master’s degrees nor an arm full of certifications, but I feel he has raw talent much greater than mine. One day, with my help or with your help, Bailey, or people like him, could have multiple certifications, or a couple of degrees if they choose to acquire them, but let us look at what we need from the people in our teams.
We need smart people who have the drive and the natural gifts we can hone to help them achieve their potential. In a few years they will reward us for our efforts (probably a lot sooner, but let’s go with years). I know we sometimes need people with experience, but open your team to these newcomers. Instead of getting another analyst maybe get two graduates and help them fulfil their dreams. With that small investment you get more motivated staff, more hands on deck and a much stronger industry.
It is not rocket science, but it can make a huge difference.