Access your Pro+ Content below.
Wendy Nather: 'We're on a trajectory for profound change'
This article is part of the Information Security issue of June 2017, Vol. 19, No. 5
Wendy Nather jokingly describes herself as a recovering CISO. She started out as a director of IT security in financial services and CISO in state government. She then turned her talents to the "business side of security" and became a research director at 451 Research and the Retail Cyber Intelligence Sharing Center. In December, she joined Duo Security, an authentication software-as-a-service pioneer in Austin, Texas, as principal security strategist. Marcus Ranum caught up with Nather to discuss her journey from private and public sector CISO to information security strategist, and the industry trends she has noticed along the way. How did you wind up in computer security? Wendy Nather: I started when I was 12. I told my dad one day that I was bored -- by the way, don't ever tell your parents that you're bored -- so he tossed a BASIC manual at me and said, 'Go make the bell on the teletype ring.' [The code looks like this: 10 PRINT CHR$(7).] That's how I started in programming: a combination of boredom and my dad having access...
Features in this issue
An early career as a geologist helped the veteran financial services CISO thrive in the security field. The CISO role is now broader than technical functions, he says.
Basic cybersecurity measures like limiting password reuse and implementing multifactor authentication could be big benefits, according to the Verizon DBIR 2017.
Columns in this issue
Threat hunting is driven by alerts with less emphasis on cyberthreat intelligence, according to researchers. Yet 60% of those surveyed cited measurable security improvements.
This former CISO talks about her uncharted path from international banking to industry analysis. What's next for infosec? We ask the security strategist those questions and more.