millenials ruin everything: building...value work/life balance biggest shift in mindset generation y...
TRANSCRIPT
Millenials Ruin Everything:Building & Keepingan Elite InfoSec TeamKristi GlasgallTRSLead CybersecurityThreat & Risk Engineer
Info
rmat
ion
Secu
rity
Foru
m 2
020
Confession Time
01
Agenda
The Past,The Present, and The Future
02The Job Climate
03The Proper Care and Feeding of Millenials
04TRS's InfoSec Department
05Lessons Learnedand Path Forward
06Final Thoughts
VS
POST-WWII GENERATION
29% OF THE WORKFORCE
RETIRING AT 10,000/DAY
COMMONCHARACTERISTICS
BOOMER
CYBERSECURITY
1946-1964
WORK -CENTRIC
GOAL -ORIENTED
COMPETITIVE
COLD WAR, BUNKER -TYPE MENTALITY
"MIDDLE CHILD"
ETHNICALLY DIVERSE
BETTER EDUCATED
COMMONCHARACTERISTICS
GEN X
CYBERSECURITY
1965-1980
INDIVIDUALISTIC
FLEXIBLE
VALUE WORK/LIFE BALANCE
BIGGEST SHIFT IN MINDSET
GENERATION Y
FASTEST GROWING SEGMENT OF WORKFORCE
TECH NATIVE
COMMONCHARACTERISTICS
MILLENIAL
CYBERSECURITY
1980 -1996
FAMILY -CENTRIC
ACHIEVEMENT -ORIENTED
TEAM -ORIENTED
TRANSFORMING THE INDUSTRY
VS
01
VS
POST-WWII GENERATION
29% OF THE WORKFORCE
RETIRING AT 10,000/DAY
COMMONCHARACTERISTICS
BOOMER
CYBERSECURITY
1946-1964
WORK -CENTRIC
GOAL -ORIENTED
COMPETITIVE
COLD WAR, BUNKER -TYPE MENTALITY
"MIDDLE CHILD"
ETHNICALLY DIVERSE
BETTER EDUCATED
COMMONCHARACTERISTICS
GEN X
CYBERSECURITY
1965-1980
INDIVIDUALISTIC
FLEXIBLE
VALUE WORK/LIFE BALANCE
BIGGEST SHIFT IN MINDSET
GENERATION Y
FASTEST GROWING SEGMENT OF WORKFORCE
TECH NATIVE
COMMONCHARACTERISTICS
MILLENIAL
CYBERSECURITY
1980 -1996
FAMILY -CENTRIC
ACHIEVEMENT -ORIENTED
TEAM -ORIENTED
TRANSFORMING THE INDUSTRY
VS
01
VS
POST-WWII GENERATION
29% OF THE WORKFORCE
RETIRING AT 10,000/DAY
COMMONCHARACTERISTICS
BOOMER
CYBERSECURITY
1946-1964
WORK -CENTRIC
GOAL -ORIENTED
COMPETITIVE
COLD WAR, BUNKER -TYPE MENTALITY
"MIDDLE CHILD"
ETHNICALLY DIVERSE
BETTER EDUCATED
COMMONCHARACTERISTICS
GEN X
CYBERSECURITY
1965-1980
INDIVIDUALISTIC
FLEXIBLE
VALUE WORK/LIFE BALANCE
BIGGEST SHIFT IN MINDSET
GENERATION Y
FASTEST GROWING SEGMENT OF WORKFORCE
TECH NATIVE
COMMONCHARACTERISTICS
MILLENIAL
CYBERSECURITY
1980 -1996
FAMILY -CENTRIC
ACHIEVEMENT -ORIENTED
TEAM -ORIENTED
TRANSFORMING THE INDUSTRY
VS
01
The Job Climate02
3,000,000 vacant jobs by 2021
58% of CISOs believe not having an expert cyber staff (skills gap) will worsen
40% of security executives said the skills shortage is causing high rates of burnout and turnover
Progressive employer seeks Harvard -train ed n euroscien tist an d beauty pagean t win n er . Must be fluen t in Man dar in an d skilled at tr ibal basketweavin g. Min im um of 10 years workin g for h igh-tech com pan ies.
Salary: m id-30s
02
Location: Washin gton , D.C.Salary: $50,000Required Exper ien ce:• 4+ years as par t of federal in form ation assuran ce team• Must have served on Cyber In ciden t Respon se Team
(CIRT)• Com plete kn owledge of NIST 800 ser ies• Super ior com m un ication skills to serve as "face" of
depar tm en t's secur ity team (m ust provide wr itin g sam ples)
• Public trust clearan ce required• Must repor t to DC worksite 8-5, Mon -Fr i
Cybersecur ity SOC In ciden t Respon se Jun ior An alyst
02
Location: Austin, TXSalary: $50,000Required Exper ien ce:• Mathem atician s, com puter scien tists, cybersecur ity
exper ts, physicists, pen testers, foren sic an alysts, an d an yon e from sim ilar fields en couraged to apply
• 2+ years exper ien ce• Masters in Com puter Scien ce or m ath• Gen eral program m in g an d software an alysis skills• Subject Matter Exper t (SME) in n etwork protocols an d
cryptography
Software En gin eer - An alyst as IT Secur ity Con sultan t (Sen ior Role)
02
The Care and FeedingofMillenials
We want to contribute to the world and know that we have directly made the world better.
Mission -Oriented
We want to know - did we do that in the way that was expected? Have we earned your trust to try something creative?
Feedback & Mentoring
Yes, we are disrupting the status quo. But every generation has done that to some extent. However, with the power of the Internet, we can do it on a scale never seen before.We don't want to ruin EVERYTHING - we want to DO MORE GOOD.
03
Teach us a values - based reasoning for something instead of a rules - based approach.
Value-Based Rules
Where We Were04
We Asked Ourselves:
Do these towers match what we're doing here at TRS?
Does this prepare us for the future?
Are the titles our employees have something they feel proud to own?
04
State Title vs Working Title
CybersecurityArchitect
CybersecurityAnalyst III
CybersecurityEngineer
CybersecurityAnalyst II
CybersecuritySpecialist
CybersecurityAnalyst I
04
WARNING:YES, I REALIZE HOW SMALL THE
FONT IS ON THE NEXT FEWPAGES.
IF YOU WOULD LIKE A COPY,GRAB MY BUSINESS CARD, ANDI WILL EMAIL THE ACTUAL PDF
TO YOU!
04
04
04
04
TRS's InfoSec Department Structure04
Lessons Learned &Path Forward
Implement weekly training sessions for the team to grow as a whole. Also gives a chance to ask questions or raise concerns.
In-House Training
Resolve how we measureKPIs but keep flexible schedules, and prepare for DR/BC
Work from Home
Use statistical information about Gen Z to slightly alter the department again when they begin to come into the workforce
Gen Z
We've just begun delving into this change. We're still finding gaps and flaws, and that's okay! We set up a framework that can evolve.
05
Questions?
Info
rmat
ion
Secu
rity
Foru
m 2
020