Balancing Paper Pusher and Pumping Iron
Keep moving. At times, it’s easier said than done. As you move up in any career, the confines of a desk get more and more real.
Over 40% of people are considered obese according to the CDC. You can read more about workplace obesity here. https://obesitymedicine.org/obesity-management-for-people-with-desk-jobs/
(more…)
Imagine if you needed to make 600 sandwiches today. How does that feel? 600 of them. That’s a lot right? Stacked on top of each other, 600 sandwiches can be 75 feet high.
What if you had to make 600 sandwiches in one day? Would you go at it alone? Probably not. In cybersecurity, these sandwiches could come the way of unpatched vulnerabilities, audits, trouble tickets, or any other tight deadlines.
I always say the cybersecurity isn’t just a technical business. It’s more so a people business. A lot of correlation between tackling problems in cybersecurity can equate to tackling problems elsewhere. Stay with me.
In life, the sandwiches can pile up in the way of well, all sorts of things. Gas prices are too high. A tree fell on your patio. The dog made a mess in the house. The problems pile up quick.
What can you do?
Well, first of all, breathe. Then, take a step back and look at what you can actually control. Did you exploit the cyber vulnerability AND use the affected components in your organization on purpose? Likely not, at least not all of those things. Did you raise the gas prices or knock over a tree? Nope to that.
Now that we have that settled, we can deduct that maybe some things are completely out of our control. For the ones that are, there can be measures put into place to prevent them in the future, but there’s nothing we can do to change the past, right? Take the tree example. The tree can be pruned before the rough winter, minimizing the probability of snow weighing down the branches.
To solve issues, try rating them on a scale of 1-10 in difficulty, 10 being the most difficult. Anything 1-3 you can tackle on your own, alone. Maybe 4-6 you need to consult folks for some advice. If it’s higher than 6, you need a team.
Let’s go back to the sandwich example. You didn’t choose to go into work and be expected to make 600 of them. You know this- to be fair, the team dynamic was aways here, but stay with me. At the same time, it’s a difficulty of 10. With a large team, this task can be completed in a few hours. Easy, right?
Here’s the thing. There’s no way to make every single thing easier, or better, or less unbearable in certain situations. However, the majority of things we see as massive, daunting tasks can be broken down into bite-sized chunks. An example would be dividing the sandwich task between 10 or more people, maybe a lot more. They can even be made better with a team approach. Also, don’t forget to breathe. Talk to people. Most importantly, enjoy the ride.
As Cybersecurity Month comes to a close, it’s good we reflect on the significance of this annual event and how we must always be mindful of our security. Throughout October, we’ve emphasized the importance of online security, educating individuals and organizations about the ever-evolving threats in the digital world. As the year comes to a close, we’ve had no shortage of surprises in the realm of breaches.
Okta, which affected MGM to the tune of lost $100mm in profit, was massive. At the same time, Ceasar’s had their own problems to worry about. I can honestly say 2023 is the year of ransomware. Other noteworthy attacks were stolen Microsoft Azure credentials, Twitter breaches, and even a Starlink satellite. Never pay the ransomware, by the way. More on that later.
Look, anyone can preach the importance of strong passwords, multi-factor authentication, regular updates, and staying vigilant against phishing attacks. I can go on about the significance of antivirus software, data encryption, employee training, backups, and security audits. What it boils down to is communication throughout an entire business, and even in your own home. No one is completely invulnerable. Also, it helps to stay informed about the latest threats and best practices in the field.
Now that the month (and year very shortly) is ending, it’s crucial to carry the lessons and practices. Cybersecurity is not a one-time event; it’s an ongoing process. By adopting the knowledge and tools gained during Cybersecurity Month, we can continue to safeguard our digital world, protect our data, and contribute to a safer online environment. Cybersecurity should be a year-round commitment, and the end of Cybersecurity Month is the beginning of a more secure digital journey. Let’s do this together.
Cyberlynx 