Cybersecurity … the thankless job

A day in the life of a Cybersecurity Pro

• Review an ocean of alerts, take action, but don’t break anything.
  Setup alerts on new servers, networks, cloud, each differing from the other.
• Keep up with CVE patches, and roll out patches to servers and PCs, but don’t break anything
• Implement Multi-Factor Authentication. Spoon-feed users too lazy to follow instructions, but avoid user complaints. Constantly activte/deactivate user access (including 3rd parties); and it is different for Active Directory, AWS, GCP. But don’t break anything.
• Implement Least Privs and Roles based access controls (including 3rd parties). But know which data can be accessed by which users. Constantly activate RBAC/leastprivs. Decommission old accounts, old systems, old data (even if not notified). But don’t break anything.
• Create and Maintain data to support SOC2 audits, GDPR audits, DORA audits, SEC, HIIPA, FISMA, SOX, CCPA, FedRAMP, CMMC. Deal with audits while your other job doesn’t cease.
• Answer questions about breach-of-the-day, Cloud data security, AT&T and Snowflake DEMO accounts.
  Get it right every time, but never mention “more budget”.
• If/when there is a breach on your watch, deal with forensics, legal, public relations, corrective action and possible unemployment. While your other job doesn’t cease.

While I do love a challenge, while I have worked demanding jobs at top tier organizations, while I am capable of absorbing and applying oceans of input; truly, I have my doubts if I could do this job.

I have deep respect for Cybersecs