Fran Bromley-Norwood - Education Guru Shares Cyber Insights

Critical Stats

LinkedIn: https://www.linkedin.com/in/fran-bromley-norwood-932b46148/

Started their cybersecurity journey in: 2015

Most passionate about: Educating K-12 teachers so they can educate and prepare students for industry

Favorite zero-day: It's not a zero-day, but AI student protection is my jam!

Favorite song: “In Your Eyes” by Peter Gabriel

Introduction

Fran Bromley-Norwood is a renowned figure in computer science education. With a wealth of experience and a deep passion for student success, she has spearheaded the development of innovative computer science and cybersecurity programs, preparing students for successful careers in the field.

Fran is a mover-and-shaker!

We selected Fran because she is a mover-and-shaker! She led the creation of K-12 cybersecurity pathways in Nevada. To be more precise, she created the first cybersecurity program of study for Career and Technical Education in the state. She engages students in cybersecurity by relating her journey of education and growth, helping hesitant students see a path to expertise and a career. Her focus on student development in the field of cybersecurity is commendable and deserves recognition!

Without further ado, we asked Fran our standard set of 5 questions to rule them all, and here are her responses:

Five questions to rule them all!

1. What is the biggest problem we are dealing with in cybersecurity?

A critical cybersecurity skills gap exists nationwide, with a shortage of adequately trained and certified professionals. This shortage directly impacts organizations' ability to address emerging threats effectively.

Imagine a school with 1,000 students and only three teachers – this inadequate staffing severely compromises the quality of education. Similarly, organizations' lack of cybersecurity expertise makes them vulnerable to attacks and hinders their ability to protect their assets effectively.

2. How can we address the fact that there aren’t enough cybersecurity professionals nationwide?

A multifaceted approach is necessary. It starts with increasing professional development opportunities for K-12 educators. This will equip them to teach cybersecurity concepts to young students and foster greater awareness and appreciation for cybersecurity among the next generation. Ultimately, this increased awareness will drive more individuals to pursue careers in cybersecurity or at least equip them with the knowledge to recognize and mitigate cyber threats, even small ones. After all, all it takes is one click, and a bad actor can control your or your company’s bank account (or worse).

3. What are three actions a CEO can take to protect their company from cyberattacks?

I would encourage them to

1. Ensure that adequate cyber protection is in place before an incident. This can include cyber staff within the company’s team and/or contracts with outside entities that protect the company’s assets properly. It is critical to have protections in place before a cyber incident, not after. You need to be proactive. Being proactive is the only way to stop a data breach.

2. Train and test their staff. Implement a comprehensive cybersecurity awareness program that includes regular testing. For example, train your employees to spot and address phishing emails. Then, simulate phishing attacks to evaluate employee understanding and identify areas for improvement. This data-driven approach allows for continuous improvement in employee training and enhances the organization's overall security posture.

3. Engage with their local schools! Companies can foster a strong talent pipeline by collaborating with local educational institutions at all levels, from K-12 to post-secondary.

   • These partnerships provide valuable access to aspiring cybersecurity professionals, enabling companies to offer internships and career opportunities.

   • Furthermore, this engagement allows companies to actively shape the curriculum by sharing their expertise and industry needs with academic institutions, ensuring graduates possess the in-demand skills required for success in the cybersecurity field.

4. What are the best resources for learning more about cybersecurity?

Who doesn’t like learning something new?! I am a firm believer in becoming a lifelong learner! Young or old, here are three ways you can continue to learn about cybersecurity:

1. K-12 cybersecurity education: Early exposure is crucial. I strongly recommend K-12 cybersecurity instruction whenever available. The adage "You can't be it if you don't see it" holds true. Early exposure fosters a deeper understanding of cyber threats and encourages a lifelong interest in cybersecurity.

2. Post-secondary opportunities: Post-secondary education offers diverse learning pathways, including degree programs, certifications, and boot camps, catering to various learning styles and career goals. Ideally, there is collaboration between K-12 and higher education to ensure a seamless transition.

3. Industry-recognized certifications: Industry-leading organizations like SANS or ISACA offer valuable certifications that enhance career prospects. These certifications benefit individuals seeking career changes or upskilling in the rapidly evolving cybersecurity landscape.

5. What is one piece of advice for those wanting to pursue a cybersecurity career?

I strongly encourage exploring the diverse educational opportunities offered by local post-secondary institutions, even if you already have a degree. Many overlook the value of continuing education. Pursuing further learning can unlock unexpected career paths and significantly enhance personal and professional growth.

It's showtime! Better start sharing this interview. After it all, it is the interview with the most, babe!

Are you looking to go to a persona page?

Cyber 101 | The Solopreneur | SMB | BoD