can go into that question. My journey tour I got to today went through several different areas. I had a love for technology, very curious about digging in and learning about things, and that led me to work in the I T space. Um, first with several companies around the Utah Valley, Novatel Family Search worked at the University of BYU for a while, and a lot of what led me into security was really around the fascination of how we could try to defend different computer systems and the implications of not doing so. And so it went into different areas such as penetration, testing, system administration, db a work, um, architecture, work and cloud. And I've kind of ended up where I'm at now and more of a mentor in management role. But it s so it's There wasn't one path that led exactly to here, and I don't know if I would say there's one path that leads to a certain area and information security. There's lots of different avenues, but that's kind of where my journey started. Has there been curious working immunity space? Um, some of the incidents and experiences that kind of shape my path has really been through mentors. Um is I've had questions and as I have tried to figure out what I'm passionate about and where I could go to to really capitalize on that passion and find work to do in that area, there's been several managers that I've had that have really helped to guide me, one in particular. I won't give his name here, but he worked in the Air Force for 20 years, and he really helped to share his experience with May on where he got to where he was at and hope to kind of guide my curiosity. You would ask me questions and give me opportunities to dig into that and then kind of show me what opportunities existed in that field of curiosity that I had

it really differs on the size of company, your with and and where what you're doing within that company. So I've worked in in large organizations to where you're really, um, narrowly focused on a certain aspect of information security within domo. It's a small organization, so I like that I get excited because I get to wear a lot of different hats on a day to day basis. Some of that falls into strategy thinking, looking ahead of where do we want to go is a company. Where do you want to take our product? What market space are we looking at and what things can I do from information security to support that vision of where they want to go? Are there any roadblocks or anything that could derail them from hitting those goals and start to plan and give our team direction on what we could do? Teoh to maybe support that better? I also wear Hat of information security risk where we look at different risk. The organization faces and daily were meeting with with internal customers that we have within the dome organization. We also meet with external vendors and we look at what data that we have Hausa being process transmitted or stored. And what are any risks around that that we need to focus on and bring those levels to? The business leaders who make those decisions and articulate those risks so that they can then enacted, make those business decisions to reduce that risk or to accept those? Well, it's one area that that I work in, others there an incident response. We continue. We have activity against our infrastructure as well as in the other organization on the Internet. And we frequently have to look at what are we saying from signals coming in from different detection points that we have? How do we want to respond to that? Which do investigate what? They're just defensive interest, Um, so those It's kind of a broad spectrum, but those are a lot of things that I do with on a day to day and week to week basis.

ages. There's always the human factor, and if you want to be successful in an organization, you need toe be able. Teoh. Understand what's driving the other person. The other department, we sometimes come in his information security in tow, us. That is the most important thing in the world in our viewpoint, our paradigm and really being flexible to understand that from the other person's paradigm, maybe it's the development or engineering shop. Maybe it's marketing. Maybe it's finance. They have a whole different set of worries that they're concerned about on a day to day basis and really being open minded and really understanding their point of view and how you can help support them to reach their business objectives tends to be the most challenging part. Because security sometime is not seen as the yes person there, saying that the no person and really trying to change that paradigm to help them understand that we're really there to help them, to succeed and trying to say yes as much as possible on being created about how to make that happen in a safe way. And I would say that's the most challenging part of my day to day interactions.