On the one hand, it's somewhat simple in the fact that I've been doing security my entire career a little bit unusual. The fact that I was a liberal arts mush head as an undergraduate but went to I've always enjoyed a technology, always been a bit fascinated by what the intelligence community does. And the first time at the graduate school. I took a class in the intelligence community, surprised, and one of my classmates was a an Army colonel in military intelligence, and and she and I used to talk all that on. She finally said to me, Well, why don't wanted to? You've got a passion for this Why don't you join? And I just kind of laughed and said, Well, you know, I didn't do the are to see the college as an undergrad and I'm not gonna go do the, uh, the officer training, you know, boot camp. And that's it. Just Noah. Apply for a direct commission. What's a direct commission? I had no idea, never, never even heard of this. And it it's pretty common amongst doctors, dentists and lawyers on Essentially, they wave a magic wand over your head and make you an officer for that. So So Anyway, I went through that and did. That s so I started off. It's a signals. Intelligence officer in the Army moved to Washington, D. C. Spent 7.5 years They're working on a black, are classified project, moved back to the Bay Area where I grew up. I grew up in the East Bay, but moved back to Silicon Valley and then spent up 30 years running the enterprise information security programs and then four years ago shifted to do some consulting.

these days, everyone is working from home. Fortunately, most of my clients air in the tech sector, and so everyone's already set up to work from home. So, frankly, that has a big problem. A tall the decisions that I make that our mind as what engagements do I want to accept or not, Um, very different model in the Big Four, where you basically have to accept assignments they have because, you know, you've got your quota literally a bill. Time that you got to bring in, I wouldn't have 40 partners is about 105 of us. Everyone is either a former c i o c T o R c I s o. Generally speaking, almost everyone has been with a Fortune 1000 company and had that title for at least five years. So it's a very people, uh, clients. I've got several of them, a couple of them that is assisting them with their go to mark their security companies. Surprise, surprise. And that's assisting them with their go to market strategy for improving it. Ah, a couple of them. I function as their CSO on on the They're not large enough that need a full time CSO, but I am there. CSO So I spent a week or two a day or two week there, another one. That's kind of interesting that I would have never Otherwise. Hodess doing that same work for a political action committee, Just kind of interested. So So anyway, that's Ah, the hours very bye week. But I've got a study playing bass and I was hoping when I left full time and went to consulting role to work less on, I found out that I'm generally speaking, actually working mawr, which is interesting on Just so I'm not bored, I also teach one day a week is so

I only speak really from security, since that's all I've done. The good news about it is that the space, the technology, the attacks are changing constantly on DSO that requires a lot of work to try and keep up with what's going on. I spend a least an hour a day, every day, doing professional development, reading, keeping up with the latest attacks, the latest technology, whatever that might be s. I spent a lot of time eating reading, either credible vendor reports, academic papers. Sometimes their government reports the government reports tend not to be is good simply because they hold back a lot of information. I will say pleasantly surprised by the report, the joint report that was released last week by ESA and the FBI about a new piece of Russian malware. They actually go into quite a bit of death, unusually so for government agencies. I was impressed with that off of that, so I'd say that's that's probably the biggest challenge is just keeping up with all the changes. Um, I once inappropriately said to a CFO that, you know, unlike his job, you know, my job changes constantly. He only has to worry about the fast be rules changing every five years. Um, I'm not sure that came out the way I was intending, but that's another. I mean, I wouldn't want to be an accountant. How boring So. But no, I say that that's the biggest challenge is just keeping up with the technology. You know, you step aside for six months and you're a dinosaur. You know, it's hard, hard to catch up. So that's definitely the biggest challenge. Like I say, a lot of professional development reading on. But I enjoy keeping up with it. What by technology scouting for V. C s P firms, some accelerators.