Nobody Kicking Down The Door to Help with Audits?

Framing is Everything

Author

Steve McMichael
September 10, 2024

Hey there, đź‘‹ 

Today I'm sending along:

đź’ˇInsights From GRC Coach Will Reed

Nobody Kicking Down The Door to Help with Audits? Framing is Everything

If you're trying to break into the field of cybersecurity, there's a lot of advice out there about what certifications to get, what training to take, and what books to read. But there's another approach that can be surprisingly effective: just start helping out.

Suppose you're already working at a company that has an Information Security team. One way to get a foot in the door is to reach out to them and ask if there's anything you can do to help. You could say something like "I'm looking for stretch assignments to add to my Career Development Plan. Do you have any documentation for compliance assessments I could help with?”

You might be surprised by how receptive they are to this. As GRC Coach Will Reed describes:

âťť

Nobody is kicking down doors to try to help out with audits! Like, I want to gather all the documentation and the evidence and I want to sit down with the auditor?!

So it's one of those things where you can add immediate value by taking something off somebody else's plate. It shows commitment to the organization commitment to business objectives and then you know basically being able to deliver value and things that were outside of your initial job description

IIn my experience, this sort of initiative is rare. To differentiate yourself, hunt for and make your own opportunity. Like Al Pachio says in his Any Given Sunday pep talk at the end of my CISSP surprises video:

The inches we need are everywhere around us.

They’re in every break of the game, every minute, every second.

On this team, we fight for that inch!

So of course, keep reading those Cyber Cannon books and certing up in the Education portion of your Career Development Plan. But also be on the lookout for ways to start helping the people around you. It's one of the best ways to break into a new field.

Check out the full podcast with Will Reed here:

🎓️ 3 Ways to Certify Your Knowledge of NIST Cybersecurity Framework, with AKYLADE Certified Cyber Resilience Fundamentals (A/CCRF)

Speaking of certing up, three options are now available for the Cyber Resilience w/ NIST CSF 2.0 course that covers everything you need to know to CRUSH the A/CCRF exam:

More information on these options in Simply Cyber Academy and Udemy is here.

Also sharing a testimonial from a recent student. Kudos completing the course and exam Caesar!

“This [Cyber Resilience] course was super helpful for getting ready for the fundamentals exam. The instructor was awesome too! I'm really glad they have this series of certifications now, it makes it so much easier to learn about NIST CSF. Big shout out to Steve McMichael for putting this course together. The explanations were clear and easy to follow. Overall, amazing course - short, sweet, and packed with useful info.”

Caesar Mora

I look forward to seeing you in the student discussions and helping you achieve your goals.

Thank you and best regards,

Steve