Today I start what is likely to be the beginning of the end for me.
My knowledge of Information Security, in its basic form, goes back to 2009. That’s when, as a Defense Contractor, I found myself staring at the Security Technical Implementation Guide (STIG) set forth by the Defense Information Systems Agency (DISA). The objective was to review the guidelines and ensure the products I was responsible for architecting and managing were following the strictest of rules set forth by government. As you might imagine, deer in a heads light look does not adequately explain what was going through my mind. The learning curve was steep and until 2011, I would argue that my understanding was still negligible.
Fast forward to 2011 and today I find myself an Executive at a tech-startup specializing in one very small, but growing, InfoSec domain — web-based malware. It is easily argued that my understanding of InfoSec was marginal at best until some time towards the end of 2011. That’s where and when things began to click for me.