I admit it - I'm a geek at heart

I like to keep a close eye on the technical infrastructure. For instance, I’ve now got a Landesk client installed on my PC, which enables me to get the metrics I want on our infrastructure security status without having to rely on others to get it for me (I think Landesk is a fantastic product, enabling our technical teams to roll out patches and provide desktop support amonsgt a myraid of other useful tasks).

I also have our perimeter scanned on a regular basis. This is an invaluable service, enabling me to quickly identify new vulnerabilities and alert the right teams on appropriate remediation actions. If you’re not already doing this then I recommend you begin. Sometimes, I’ll do a bit of testing myself to verify scan results or check the status of a firewall.

As you can probably tell, I still enjoy being able to retain hands-on security skills. I’m often fearful of becoming little more than an administrator and delegator whilst others get to perform all the interesting work. Behaviour not becoming of a security director? Give me a break – I got into this job in the first place because of my interest in the subject and spent years gaining the sort of techical skills and knowledge that allow me to understand what’s really going on. I know that these days we’re supposed to be good managers and good business people – and I hope I am both – but underneath that (very smart) suit is still a geek and techie looking to break out…