CyberWire Daily - Lauren Campanara: Learn to forgive yourself. [SOC Analyst] [Career Notes]
Episode Date: November 13, 2022Lauren Campanara, a SOC Analyst from ThreatX shares her story as she made the decision to break into cybersecurity after spending twelve years in the cosmetology field. She worked her way through coll...ege in a job she did not enjoy and felt trapped in while competing her online degree. She found ThreatX and fell in love with the work she is doing now. Lauren hopes to inspire others, especially women, to consider a challenging and rewarding career in cybersecurity. She shares what it's like to be in a field she was not happy in and how she was the only one standing in her way to achieve her goals. She says "Another huge obstacle worth mentioning is learning to get out of my own way. You are your own worst critic. I learned to be more forgiving of myself." She hopes her story will inspire others to follow their dreams and stop holding themselves back. Learn more about your ad choices. Visit megaphone.fm/adchoices
Transcript
Discussion (0)
You're listening to the Cyber Wire Network, powered by N2K. and VPNs, yet breaches continue to rise by an 18% year-over-year increase in ransomware attacks
and a $75 million record payout in 2024. These traditional security tools expand your attack
surface with public-facing IPs that are exploited by bad actors more easily than ever with AI tools.
It's time to rethink your security. Thank you. Learn more at zscaler.com slash security. I didn't grow up in the most supportive environment.
So I read a lot of books, made art, and I used dance as an outlet.
I was always very creative.
As a child of the 90s, I found the Internet and I messed around with HTML and taught myself how to use Photoshop to make graphics for all the AngelFire websites that I had.
I was always curious about computers, but I didn't look at
that as a potential career. It was just another outlet for me at that time. As I got older,
I started to get into doing hair and makeup as a way to express myself. I ended up pursuing
cosmetology because it was something that I was great at. And I thought that focusing on
learning a trade would guarantee job security.
And that was the most important factor to me at that time.
I wanted to pick a skill that was always going to be needed.
Everyone needs a haircut.
It wasn't until much later in my life that I recognized that technology was going to even be an option for me.
I spent 12 years in the cosmetology industry before recognizing that I felt really unsatisfied and unhappy.
I just didn't feel as passionate about it anymore, mostly because it's such a physically demanding job, and I started to question if I was capable of more.
In 2017, my partner helped me realize that I could do anything I wanted to do, and I didn't have to stay in a career that wasn't making me happy.
That's when college became a real consideration for me.
I knew I wanted to go down a path that was going to be more
challenging and rewarding. I really wanted to feel like I was making more of a difference in the
world. I looked at some career options and I made the decision to go to college within a week.
It happened very quickly. I enrolled at Champlain College for their fully remote online program,
originally as a digital forensics major.
But I realized very early on that cybersecurity actually appealed to me more.
And a lot of the courses in that curriculum overlapped with forensics anyway,
so I made the switch.
And also when I was researching cybersecurity,
I noticed that there was a shortage in female employees,
and I honestly thought that I could use that to my advantage to help me stand out after graduation.
For at least half of my college journey, I continued to work as a hairstylist.
I would study for hours before work and then go stand behind a chair for seven or eight hours, come home and study until I went to bed.
When I was a sophomore, I had the opportunity to do an internship as a SOC analyst
in 2019. And during my internship, I took an interest in open source intelligence.
Eventually, I participated in an event by TraceLabs, which is a nonprofit organization
that uses OSINT to help reunite families with their missing persons. At the end of the event,
TraceLabs gives all that relevant information over to the proper authorities. And I was able to team up with a Canadian hacker,
and it was an incredible experience for me and really ignited my passion for cybersecurity.
So after graduating, I applied to about 70 or 80 jobs postings, which isn't uncommon.
I got hired within a month as a stock analyst in August
of 2021. I was working overnight shifts, which was very difficult for me. I was searching for
a company that could improve my quality of life while I navigate the start of my career,
and I found ThreadX in May of this year.
I primarily work with our clients to adjust firewall rules to meet their needs.
I determine which tickets need to be escalated to more experienced analysts.
And there is a lot of technical troubleshooting involved at times. So there are opportunities
to learn new things every day. I'm used to working in very tight-knit teams,
I'm used to working in very tight-knit teams, and it's no different at ThreadX.
Our CEO, Gene Fay, has been incredibly supportive of me, and he really appreciates the importance of entry-level candidates, especially career changers, since we are the future of cybersecurity.
Do not be afraid to make mistakes it is how we learn when you get a job don't be afraid to ask questions my colleagues hear from me all day long and I joke about how many questions I ask them
every day it's just how it is when you're first starting out there is no such thing as a stupid
question at the same time ensure that you're setting yourself up to be
self-sufficient. The only way I could go back to school was through an online program. And online
education doesn't give you that brick and mortar classroom experience with a teacher right in front
of you. I mean, yes, you can message them for help, but I learned to rely on Google and investigate
things on my own. Don't wait for others to tell you what to
study. No matter what approach you take to joining the field, whether it's boot camp or certifications
or a degree, give it 100% because employers will recognize that when you start applying to positions
and you will stand out from other applicants. Another thing I'd like to say is there is a place
for women in tech. I mean, there's a place for everyone in tech, but I do want to note that it is an option for women, especially in cybersecurity.
Diversity and unique backgrounds are needed.
My cosmetology background has been more useful than some would think.
In that industry, there are always new trends and new things you need to learn to stay current.
And it's no different in cybersecurity. It's not a field where you can just coast. You'd be surprised
how often the transferable soft skills are sometimes more important or just as important
than the technical skills. My last piece of advice is to remember when you get to the point for interviewing for a position that you're interviewing the organization just as much as they are interviewing you.
I'd like to be remembered as an example of what is possible.
One of the biggest obstacles for me was learning the correct way to deal with failure.
I learned to look in the obvious places first for information
and not to be disheartened when I fail.
Failures are an opportunity to learn how to do it better next time.
If you're new to the cybersecurity field, there is a place for all of us.
If you see a job posting with unrealistic expectations for an entry-level position,
chances are that organization isn't going to be the right fit for you anyway. Another huge obstacle is learning to get out of my own way. You are your
own worst critic. I learned to be more forgiving of myself. Changing your career is no easy feat,
and I would be lying to you if I said I didn't have any breakdowns during school. And honestly, I cried
quite a bit. I held myself to very high standards during college so I could graduate with a 4.0.
And as I started to get attention from recruiters and organizations, I realized I deserved it from
all my hard work. And ultimately, the only person that was ever holding me back was myself.
I used to have very little confidence in myself
and I have struggled with feeling trapped in a career that was no longer making me happy. And
guess what? I know I'm not the only one. I hope that, you know, when the listeners hear my story,
they realize that it's up to them to decide what their life can be and know that they can reach
any goal that they set for themselves, whether they're trying to get into cybersecurity or IT, no matter the gender or
the background, you can be anything you want to be. And I'm a perfect example of that. Hey everybody, Dave here.
Have you ever wondered where your personal information is lurking online?
Like many of you,
I was concerned about my data being sold by data brokers. So I decided to try Delete.me. I have to say Delete.me is a game changer. Within days of signing up, they started removing my personal
information from hundreds of data brokers. I finally have peace of mind knowing my data privacy is protected.
Delete.me's team does all the work for you
with detailed reports
so you know exactly what's been done.
Take control of your data
and keep your private life private
by signing up for Delete.me.
Now at a special discount for our listeners.
Today, get 20% off your Delete.me plan
when you go to joindeleteme.com
slash n2k and use promo code n2k at checkout. The only way to get 20% off is to go to
joindeleteme.com slash n2k and enter code n2k at checkout. That's joindeleteme.com slash n2k,
code n2k.