Advertise

Careers & People

5/19/2020
12:00 PM

Ericka Chickowski
Slideshows

Connect Directly

1 Comment
Comment Now

7 Security Pros: What My Nontraditional Background Brings to the Job

Job experience and degrees outside of the cybersecurity or IT world can provide invaluable diversity of thinking and problem-solving.

2 of 8

Annabel Jamieson Edwards

Current position: Manager at Accenture Security

Background: Theology and religious studies undergrad

"There seems to be a myth that to work in the cybersecurity industry you must come from a STEM background. I'm a cyber defense manager with a degree in theology and religious studies. Complex problems require diversity of thought for creating solutions. I've been able to leverage my academic knowledge of geopolitics and cultural behaviors to provide insight on cyberattack attribution.

"Our technical malware engineers and incident responders are responsible for determining what happened and how an attack was carried out, but they need contributions from people like myself to understand why an organization may have been targeted."

Image Source: Annabel Jamieson Edwards

2 of 8

Comment |

Email This |

Print |

RSS

Comments

Newest First | Oldest First | Threaded View

[close this box]

50%

neineit,
User Rank: Apprentice
12/16/2020 | 10:21:11 PM

good think

security expert will have from diverse background experience was most precious fortune.

Reply | Post Message | Messages List | Start a Board

Editors' Choice

How SolarWinds Busted Up Our Assumptions About Code Signing

Dr. Jethro Beekman, Technical Director, 3/3/2021

'ObliqueRAT' Now Hides Behind Images on Compromised Websites

Jai Vijayan, Contributing Writer, 3/2/2021

Attackers Turn Struggling Software Projects Into Trojan Horses

Robert Lemos, Contributing Writer, 2/26/2021

Live Events

Webinars

Interop Digital - Free Cybersecurity Event April 29

Communications & Collaboration: 2024 (March 9-10)

Earn (ISC)2 CPEs at Interop Digital, April 29

More Informa Tech Live Events

White Papers

7 Experts on Implementing Microsoft Defender for Endpoint

A Guide to Build vs Buy Service Models for Threat Detection and Response

Simplify Your Application Security

High Performance Applications with the Dominion KX III

Anatomy of a Modern Phishing Attack

More White Papers

Cartoon Contest

Write a Caption, Win an Amazon Gift Card! Click Here

Latest Comment: George has not accepted that the technology age has come to an end.

Cartoon Archive

Current Issue

2021 Top Enterprise IT Trends

We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises are Developing Secure Applications

Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.

Download Now!

Assessing Cybersecurity Risk in Today's Enterprises

0 comments

The Malware Threat Landscape

0 comments

How Data Breaches Affect the Enterprise (2020)

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2021-26814
PUBLISHED: 2021-03-06

Wazuh API in Wazuh from 4.0.0 to 4.0.3 allows authenticated users to execute arbitrary code with administrative privileges via /manager/files URI. An authenticated user to the service may exploit incomplete input validation on the /manager/files API to inject arbitrary code within the API service sc...

CVE-2021-27581
PUBLISHED: 2021-03-05

The Blog module in Kentico CMS 5.5 R2 build 5.5.3996 allows SQL injection via the tagname parameter.

CVE-2021-28042
PUBLISHED: 2021-03-05

Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution.

CVE-2021-28041
PUBLISHED: 2021-03-05

ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.

CVE-2021-3377
PUBLISHED: 2021-03-05

The npm package ansi_up converts ANSI escape codes into HTML. In ansi_up v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting (XSS) vulnerability. This issue is fixed in v5.0.0.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]