A personal career journey from a woman of color transitioning into cybersecurity through GRC and IT Auditing, sharing insights on overcoming challenges and finding your niche.
Author: Jennifer Smith
My voyage into cybersecurity defied convention, taking me down an unexpected and meandering path that has shaped my present reality. With a profound passion for Governance, Risk, and Compliance (GRC), I dedicated countless hours to comprehending the intricate mechanisms of cybersecurity. Yet, amidst my efforts, I perpetually found myself on the outskirts, peering into a world that seemed just out of reach.
Even though my contributions directly influenced the security department's goals, finding my place within this domain was a puzzle I struggled to solve. The transition was daunting, compounded by the assertion that I required prior security operations center experience or a programming background. Adding to this, my appearance didn't align with the stereotypical image of a cybersecurity professional – instead of a hoodie, I wore heels. This absurdity intensified the challenge.
Another layer of complexity lay in being a woman of color in a field where diversity and representation remained elusive. The need for more role models who looked like me posed an additional obstacle. The absence of relatable figures to guide and inspire me proved disheartening, making it harder to envision my success in the industry. Despite this, my determination was unwavering.
Moreover, the few women I crossed paths with later exuded an air of detachment. Their journey of breaking into the field seemed to have hardened them, rendering them cautious in extending assistance. While I didn't anticipate handouts, I yearned for guidance. Unfortunately, their struggles seemed to transform into a shared expectation – if you aspired to join their circle, their challenges were poised to become your own. What was intended to be a harmonious collaboration had subtly shifted into a realm of competition.
My moment eventually arrived when I transitioned into the role of an IT Auditor, with a focal point on cybersecurity. Let me tell you, the experience was captivating. My learning curve resembled a steep ascent. Guided by a remarkably technical Director who aspired to infuse fresh talent, including me, into the team, our mission was to metamorphose into cybersecurity engineers who performed audits.
Yet, I encountered moments when I hit walls, overwhelmed by the rapid influx of information. Still, I was resolute in my quest to carve my niche. I committed myself to absorbing as much knowledge as possible, resulting in a surge of confidence that eventually propelled me into a leadership role within my domain. Soon enough, I realized that attaining comprehensive knowledge was an unattainable feat. Instead, what proved crucial was having a profound understanding of a specific domain while maintaining a wide-ranging breadth of knowledge across the entire spectrum. This realization prompted me to focus my attention on cloud security.
Advice for My Younger Self
Challenges are doorways to opportunities. Embrace these challenges, for in overcoming them, I pave the path to smoother journeys for those who follow. While the road ahead won't always be smooth, remember to channel your energy into making progress rather than seeking perfection. Each rejection redirects towards a more fitting path; every setback is a setup for a remarkable comeback.
Advice for Aspiring Cybersecurity Professionals
For those contemplating a career in cybersecurity, I offer counsel: Seek a dependable mentor, meticulously plan your trajectory, and regard feedback with earnestness. Refrain from fixating on a solitary aspect – open-mindedness can guide you toward unanticipated and exhilarating realms. Remember that the cybersecurity landscape is evolving, necessitating an enduring commitment to continuous learning. With determination, diligence, and a hunger for knowledge, success in this dynamic and fulfilling field is attainable.
About the Author
Jennifer Smith is the visionary behind SecureGRC Solutions LLC, a company committed to equipping individuals and establishments with the comprehension and tools to navigate risks effectively, safeguarding their invaluable assets. Driven by an ardent dedication to cloud security and Governance, Risk, and Compliance (GRC), Jennifer finds fulfillment in mentoring and disseminating her profound insights to empower others.
Was this article helpful?
