24 June 2020
“So, I heard back from the team. They really liked you, but I had no idea that you’ve just been promoted. The policy is that if you’ve been promoted, you have to wait a full year before you can change departments. I’m so sorry. If I knew, I wouldn’t have put you through all of this.” My heart sank. Are you freaking serious, I thought. “But this wasn’t a position promotion. It was just a salary increase and a title change. Nothing about my role has changed. Why would I need to work a full year doing the same exact thing before I can move into security?” “I’m sorry, that’s the policy. You’re welcome to take it up with HR…” And just like that, I was back at square one. Dejected, I closed the messaging window, locked my computer and went on “break” to cool down. I was livid. I was disappointed. I was dumbfounded. But mostly? I was lost. For four years, I had tried (and failed...miserably) to get an entry-level security job. Up until this point, I hadn’t even gotten close.
17 January 2020
Testing, testing. May I have your attention, please. *Ahem* Allow me to introduce myself and this new series of articles for The Ethical Hacker Network. My name is Stephanie, better known as Steph or InfoSteph in the community. I have been working as a security professional for the past year and a half, but I have been in the security industry for 3 and a half years. I've been in tech for 6.5 years. In that time, I held two different security positions, but both were corporate security roles with a lot of responsibility and steep learning curves. It has been a wild ride, one with failures and errors galore. However, I wouldn't change my past for anything. As for my future… spoiler alert… I want to be a CISO, and I have a plan to get there. But before I get into the weeds of all of that, it’s only right that we start from the beginning.