> Then I'm not sure what the point of your post was.
That "but she has a music degree!" is the least relevant part of evaluating if someone is qualified for such a CISO role or not. Someone with the "wrong" degree but talent and relevant experience would easily beat someone with a fancy "Masters of Information Security" degree that then muddled around in less relevant areas. Focusing on people's degrees is almost always the wrong measure in IT.
I in no way suggested that, please don't pretend I did. We have plenty reason to assume she wasn't.
Then I'm not sure what the point of your post was.
Software security is a mess in large part because of the phenomenon you describe.
> Then I'm not sure what the point of your post was.
That "but she has a music degree!" is the least relevant part of evaluating if someone is qualified for such a CISO role or not. Someone with the "wrong" degree but talent and relevant experience would easily beat someone with a fancy "Masters of Information Security" degree that then muddled around in less relevant areas. Focusing on people's degrees is almost always the wrong measure in IT.
5 replies →