The top 10 lies we tell ourselves as security teams
Try as we might, security teams are often subject to the same sort of echo chamber groupthink dynamics that any other function might experience. There are subtle messages or biases that can creep into our collective consciousness and cause significant harm. This article will break down what I see as
Top 3 things that cybersecurity leaders can do to support team mental health
Last week's article focused on how individuals working in cybersecurity can better care for their mental health. The silent adversary in cybersecurity. This week, we will build on this and talk about things leaders can do to create and cultivate a team culture that supports mental health. This applies to
5 Ways to Lead in Cybersecurity Without a Title
How do you step into a leadership role without a leadership or manager title? Should you be leading without the title? Should you be getting recognition with a title or other compensation if you're leading but don't yet have the title? All these questions and more are at the center
Nobody wants to read your s%!t
I'm hijacking the title of a fun little book I read recently by the same title. The point of this post (and the book) is that people have a lot going on. They probably don't want to seek out your writing or your work and read it. Therefore, if you
Skip the Exit Interview
And why you should show an interest in your team members before they make the decision to leave.
Leaning Into Uncertainty
Working in cybersecurity we're always working towards creating a safer digital environment, and it’s easy to get caught up in the mission of prevention. While we strive to deflect threats and vulnerabilities, the focus can often shift towards completely avoiding risk. But what if I told you that risk
Effective Over Efficient
Peter Drucker once said, "Efficiency is doing the thing right; effectiveness is doing the right thing."
Where Soft Skills Meet Generative AI
The rise of generative AI tools has ushered in a new era in modern businesses, bringing with it untapped potential as well as unprecedented challenges. This technology has exploded onto the scene, and there are no signs that it will be slowing down anytime soon. Some organizations have decided that
The Power of Mentorship in Cybersecurity: Nurturing Growth, Continuous Learning, and Humility
I was fortunate that my first major job in cybersecurity had a strong mentor program. This was Cigital when it was still heavily focused on deeply technical application security services. We didn't have managers, not outside of a project. To help with career growth, it was all about mentorship. Everyone
From Bits to Bias: Unveiling the Hidden Dangers of Toxic Cyber Cultures
On the Soft Side of Cyber, we've talked about what makes up a strong culture. This is also the final article in our short series on diversity, equity, and inclusion (DEI). We started this series with the different layers of diversity and the benefits of a diverse team. Next, how
Part 2 - The Value of Equity in Cybersecurity Teams
Do you consider the team and environment in which you work to be fair? Fairness is the core of what it means to be equitable over equal. Things can be equal without being fair for everyone involved. In this article, I want to unpack this question and provide leaders and
The Feedback Factor: How Effective Feedback Drives Cybersecurity Excellence
Technical skills and knowledge are undoubtedly essential for anyone working in cybersecurity, whether you're a pentester or a SOC analyst, or something else entirely. However, at Soft Side of Cyber, we believe that the true potential of cybersecurity professionals can only be unlocked when they excel in their non-technical skills