Good Times in Security Come When You Least Expect Them

Not every cybersecurity endeavor can have a huge impact. But a small percentage of your efforts can still produce results that blow you away.

Joshua Goldfarb, Field CISO

October 23, 2018

5 Min Read
Dark Reading logo in a gray background | Dark Reading

Writing can be a funny thing. Sometimes you spend days working on and struggling with a piece. Other times, a piece comes to you in a flash of inspiration in the span of just an hour or two.  How much a piece interests or speaks to your readers seems to have little to no correlation with how long you spend on it.

What does this have to do with security? Sometimes you spend lots of time and money on a given effort. But the benefits you get and the good that comes of it may be what you least expected. Or, to put it another way, a given effort may result in dozens of effects that may seem irrelevant or of no value to you. And yet, there may just be that one effect that makes the whole effort worthwhile. 

In security, we have many different initiatives going at any one time. Some may require more effort, while others less effort. Yet, as we progress with our efforts, we are sometimes surprised to learn that each initiative affects security posture differently. Often, an initiative's impact has little to no correlation to the amount of resources it requires.

How can organizations find that diamond in the rough and take advantage of the occasional gems that make an effort worthwhile? It is in this spirit that I present five ways to be prepared for good things to happen when you least expect them.

  1. Exit the Tunnel: We all get tunnel vision from time to time. But when we get overly focused on a given philosophy, a given approach, a given set of tasks, or a given work program, we often miss all the good going on outside of the tunnel we put ourselves inside. Being open to something happening in our periphery can help us find new and creative ways to solve problems and see the good that might otherwise pass us by — like that next great way to improve our security posture.

  2. Welcome Input: Don't just welcome input — actively solicit it. Is it possible that you'll hear a bunch of bad ideas that you can't possibly consider for one reason or another? Of course. But what about that one gem of an idea that you'll hear that may solve a difficult problem you've been wrestling with for quite some time? When you least expect it, you just might hear something that will pleasantly surprise you with its cleverness. But if you don't welcome and solicit input, you'll remain unprepared to receive the good that may come from the thoughts and input of others.

  3. Open Your Eyes: Some of us tend to "close our eyes" in a professional sense from time to time. It pays to open our eyes, be aware of our surroundings, and take a look around as often as we can. Perhaps you will notice something you wouldn't have noticed otherwise. Sometimes, there are good things happening just beyond our field of vision. And, more often than not, we are the ones limiting the extent to which we can see what's out there. Broadening our perspective allows us to notice and leverage the good that may be going on just outside of where we're accustomed to looking. 

  4. Open Your Mind: How many times in our lives do we hear something without truly parsing, understanding, and internalizing it? Similarly, how often do we encounter or notice something without truly seeing it for the good it brings and the value it adds? For most of us, these scenarios likely happen quite frequently. It helps to look at things with a different spin sometimes to try and reframe them and see the positive effects. To look for the good. Doing so allows us to navigate events differently. It causes us to be aware that when we look upon something differently, we may see it from an entirely different perspective in order to leverage it for good, even if how to do so wasn't initially obvious to us.

  5. Take a Long Drive for a Short Concert: I once drove three hours each way for an hour-long concert. The entire seven-hour trip was worth it just for that one hour of enjoyment. Why am I telling you this story? The overwhelming majority of your efforts may produce nothing at all of value, and that's OK. Not every security endeavor can have a huge impact, or even end in success. But a small percentage of your efforts may produce results that blow you away — and that is what is most important. It's important to look upon your security endeavors as an investment. The security organization that continues to make wise investments will continue to reap positive results from those investments. Its security posture will improve. Conversely, the security organization that runs from investment because not every single investment pays dividends immediately will stagnate and eventually worsen with time as risks and threats evolve. 

Related Content:

 

Black Hat Europe returns to London Dec. 3-6, 2018, with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier security solutions, and service providers in the Business Hall. Click for information on the conference and to register.

About the Author

Joshua Goldfarb

Field CISO, F5

Josh Goldfarb is currently Field CISO at F5. Previously, Josh served as VP and CTO of Emerging Technologies at FireEye and as Chief Security Officer for nPulse Technologies until its acquisition by FireEye. Prior to joining nPulse, Josh worked as an independent consultant, applying his analytical methodology to help enterprises build and enhance their network traffic analysis, security operations, and incident response capabilities to improve their information security postures. Earlier in his career, Josh served as the Chief of Analysis for the United States Computer Emergency Readiness Team, where he built from the ground up and subsequently ran the network, endpoint, and malware analysis/forensics capabilities for US-CERT. In addition to Josh's blogging and public speaking appearances, he is also a regular contributor to Dark Reading and SecurityWeek.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights