I am an infosec blue teamer driven by a desire to make the information security field more accessible to those who want in, to foster trust and engagement between security and other teams, and to promote security awareness with a tone of empowerment rather than fear.
I currently work as an information security analyst on Duo Security's corporate security team in Ann Arbor, MI. My role encompasses many areas of security operations, including incident response and vulnerability management. I also lead corpsec's security awareness and engagement program, promoting Duo's commitment to balancing security and usability.
My interest in tackling complex cultural issues led me to earn my BA in gender and women's studies and, years later, my AAS in network security (after rejecting the conventional wisdom "don't quit your day job"). As for certifications, thanks to being accepted into the 2017 SANS Women's Immersion Academy, I hold the GSEC and GCIH certifications (GCIA forthcoming).
In addition to serving as BSidesLV's lockpick village co-lead (and retired from serving on the staff of CircleCityCon after reviewing a few hundred CFPs and chairing the review board in 2017), I've been fortunate to give presentations at several security conferences. (See my Publications page for recordings and abstracts.) Recently I joined the CFP review board of Infosec Unlocked, an organization committed to amplifying diverse voices at security conferences.
I've been known to occasionally dip my toes into the offensive security side, in the form of capture-the-flag. In June 2017, my team won the NetWars tournament at SANS Minneapolis -- my first CTF win.
I connect professionally on LinkedIn, quip unprofessionally on Twitter (warning: contains cat photos and puns), and occasionally write on my blog and elsewhere. All opinions -- and I have a lot of them -- are solely mine.
Questions? Comments? Email me at kathryn.z.sweet [at] gmail [dot] com