Lesley Carhart Jun 16, 2024

Two controversial pieces of cybersecurity career advice I give to a lot of people I talk to on mentorship calls:

1) Don't become a manager unless you genuinely want to be a servant leader and devote yourself to people and program management for the joy and fulfillment of it.

2) Don't become a red teamer unless you genuinely in your heart of hearts want to be a red teamer, you understand what the role entails (even the boring parts), and you are willing to very deeply commit extra time and effort. They're generally much more competitive roles.

Show threadIlthea Jun 16, 2024
@hacks4pancakes i can’t agree more. I have seen a lot of good engineers became awful managers because ‘that is where the money is’ or become red teamers because they want to ‘ break things’ without understanding what it entails and what are the costs (for you) to become so.
Show threadIlthea 
@hacks4pancakes also: be humble. I have had serious conversations in the past with red teamers that do not understand the nuisances of building and maintaining an architecture (and updating it) when the business does not understand the impact of not doing so. And telling the people that is constantly fighting for budget that their work is ‘shit’ it’s not the way to help.
Jun 16, 2024 at 6:15pmWeb