I first met Nicole Hoffman, who’s a Safety Investigator for Cisco Talos and a part of our Strategic Evaluation, Menace Intelligence and Interdiction workforce, in the course of the recording of the Talos IR On Air Q1 2023 episode. This was a dwell broadcast during which we mentioned the tendencies noticed by the Talos IR workforce up to now quarter. Nicole’s workforce, amongst many different issues, put collectively these quarterly threats overview. Throughout the On Air recording, I seen that Nicole had nice digital camera presence and was in a position to articulate, what most individuals would take into account, advanced subjects in a language that basically anybody would perceive. A techie with the present of gab! I used to be instantly focused on Nicole’s path into cybersecurity and usually, as knowledgeable.
Questions
What impressed you to pursue a profession in cybersecurity?
I graduated highschool and initially began a profession within the medical discipline. I went to highschool to be a medical assistant, after which I began nursing faculty. I labored for a short while as a phlebotomist, which is a medical skilled who’s educated to carry out blood attracts on kids and adults, but it surely was actually arduous for me to discover a job, as a result of my husband was within the navy. This meant that we moved usually, and this was not anticipated to vary any time quickly. In some unspecified time in the future I made a decision to make a profession change in order that I may have a number of abilities that will permit me to search out work no matter the place we moved to. My husband, who was a community engineer within the navy, already had quite a lot of Cisco books on CCNA and CCNP preparation. I began learning remotely, making use of all these textbooks and aiming for a profession as a cybersecurity engineer. Whereas learning for my CCNA, nevertheless, I discovered it fairly boring. It wasn’t till I attended my first cybersecurity convention nearly that I received excited in regards to the subject. The convention was known as ATT&CKcon, and the discuss that I watched confirmed how the MITRE ATT&CK framework helped a risk intelligence workforce observe focused intrusions. To be trustworthy, I didn’t perceive all of it, however I discovered it completely fascinating. I’ve by no means regarded again.
How did your family and friends react if you first began your profession change?
Initially, they assumed it might be one thing that wouldn’t stick. I don’t assume they assumed I’d get as keen about it as I’m now. However my husband was very supportive, perhaps partly as a result of he knew he would get monetary savings as we already had quite a lot of textbooks on the subject. In addition to, he had a level within the discipline and has been within the business for 20 years now. We proceed to assist one another. He’s such a superb particular person to have round not solely as a mentor, but in addition if I’ve a query whereas investigating one thing or in an space which is outdoors my technical information. Additionally, it’s good to have the ability to simply chat about cyber stuff at dwelling. So sure, I believe initially everybody thought it might simply be a part, and I’d most likely return into drugs and proceed nursing faculty as soon as my husband received out of the navy, however that hasn’t been the case.
What have been the issues that you’d say has shaped your profession as a risk intelligence skilled?
I’d say that after that first convention, I actually loved not solely attending conferences in particular person, but in addition nearly. I discover the analysis fascinating. Lots of the primary jobs I had in cybersecurity have been at startups with little or no assets and devoted cybersecurity workers. This meant that I hardly ever had a gaggle of different risk intelligence professionals within the firm that would train me the best way issues are finished. Lots of instances it was a gaggle of interns who have been all equally misplaced looking for their means via an issue. That is why I got here to worth individuals who share their analysis, do open-source tasks, or current their information at conferences. This was an opportunity for me to be taught. I relied on open-source tooling for the larger a part of my work, and it wasn’t till I gave my first convention discuss that I spotted I might be a kind of individuals who provides again to the group. It was a really heartfelt realization.
The primary convention that I spoke at was GRIMMcon in 2020, which is one in every of my favourite conferences. I later talked on the SANS Menace searching & Incident Response Summit, and the SANS CTI Summit in 2021 and 2023. I nonetheless discover it very emotional every time I current. It’s one thing that I stay up for, as a technique to pay again and join with the folks that I look as much as in our discipline. However probably the most thrilling factor is that this yr, I really received to talk at ATT&CKcon in October 2023, which is the rationale why I’m in risk intelligence. Along with a Talos colleague, we introduced a discuss the advantages of making your individual information base utilizing ATT&CK as a taxonomy particularly for monitoring adversaries over time. It is rather particular for me and my household to carry this presentation, closing the circle.
What’s your single most vital piece of recommendation to folks contemplating a profession in cybersecurity?
Don’t spend your time, cash, and energy getting a bunch of certificates earlier than you recognize what you actually wish to do. I see lots of people are available in they usually instantly begin getting targeted on certificates. A few of these certifications price 1000’s of {dollars} and are an enormous funding of your money and time. I did one of many entry-level extra reasonably priced certifications, Sec+, and it has been very helpful for getting a foot within the door, however I’d say, don’t spend a bunch of money and time and energy, particularly if you happen to’re going to highschool already. There’s solely a lot you may take up, and your mind might be already fried. Earlier than you join something, first do your analysis, have a look at the kind of belongings you could be doing within the job, and solely seek for certificates that will doubtlessly profit that particular position.
Possibly you may discuss a bit about social presence and model since you’re one of many professionals that has a transparent model.
I’d say there are two elements to it. First, if you happen to get pleasure from having your individual analysis or having your individual weblog. or something that you simply wish to share with the group (with out having to essentially ask permission or have somebody edit it and alter your imaginative and prescient), then having your individual weblog is tremendous helpful. Even when it has nothing to do with cyber, you would nonetheless share it with folks and you would nonetheless construct up a social presence.
Having this social presence, particularly within the distant workforce, is a means so that you can not solely promote your self, but in addition community with different professionals. I’ve met so many individuals simply by writing a weblog, after which somebody says, ‘oh my gosh, I like this weblog. It actually resonated with me.’ Considered one of my greatest buddies within the discipline, John Doyle, wrote a weblog about burnout, which actually related with me. After I learn it, I used to be deep within the pit of burnout, however I used to be in denial. After studying that weblog, I reached out to John to thank him.
The opposite a part of retaining an energetic social presence has to do with abilities marketability. It’s vital to advertise your self, promote your individual model, particularly when issues don’t go as deliberate and perhaps you get laid off or the corporate hits arduous waters. You may then at all times attain out to a number of the folks that you simply’ve met via networking and see if there’s something that they will do to doubtlessly get you a brand new job.
What’s the one factor you would like you had identified in the beginning of your cybersecurity profession?
The significance of sentimental abilities and simply speaking to folks. Once you’re first beginning out in a profession discipline, it may be very intimidating. Fortunately, I had a mentor early on who would inform me ’If you happen to actually wish to be taught in regards to the discipline, you wish to be taught in regards to the several types of jobs on the market or if you wish to go work someplace, discuss to the folks that work there. Say hey, can we go get a espresso? Can I simply ask you just a few questions?’
This was really how I received my first job in cyber. I requested the CEO of a small native firm if he needed to have espresso, and he ended up hiring me whereas we have been on the cafe. It’s actually vital to not neglect that individuals are simply folks, even when they’re able of energy and delicate abilities are actually vital.
We’d love to listen to what you assume. Ask a Query, Remark Beneath, and Keep Related with Cisco Safety on social!
Cisco Safety Social Channels
Share: