Jeremy Howard, security analyst III, is one of the newest members of our InfoSec team. Jeremy’s primary responsibilities as a Security Analyst III are to “manage and review events and increase the organization’s security posture by using our Data Loss Prevention program.” He also “provides guidance regarding information security pertaining to clinical workflows.” Jeremy notes that every day is a new day in security, with new and exciting challenges
Jeremy’s first few experiences in his career were in hands-on environments. He worked in a factory as well as in concrete construction. Jeremy and a team would build anything from prison cells to parts of the St. Louis Metrolink track. While he was fulfilled by the “tangible hard-earned results,” his “fascination with computers and programming always lingered in the background.”
After the construction company that Jeremy worked for closed its doors in 2008, he pursued an associate’s degree in network administration from Kaskaskia University. Here, he took a deep dive into the “intricacies of IT infrastructure, with a curriculum that was engaging and exciting.” Jeremy gained a solid foundation in technology through the courses “covering Firewalls, Ethical Hacking, Computer Forensics, and Cisco routers and switches.” These courses made Jeremy realize how important it would be to have a broader understanding of computer science. This encouraged him to further his education at Southern Illinois University, where he earned his bachelor’s degree in computer science.
After obtaining his degree, Jeremy began his career in IT as an SSM helpdesk technician. While this role was technical, Jeremy was able to boost his customer service skills in this role. From there, he transitioned to a “Break-Fix” Technician, the “go-to person for IT support, tackling diverse projects that enriched his technical expertise and interpersonal abilities.” After excelling in this role, Jeremy transitioned to a security analyst role in the same organization where he was the “subject matter expert for the privileged access management and the endpoint detection and response tools being used, playing a vital role in incident response investigations.” Jeremy “was part of a team that reviewed new onboarding projects to provide security best practices and guidance.” This is where Jeremy found his passion for infosec. Jeremy knows that “the bad guys only have to be lucky once.” Jeremy enjoys working in infosec because of “the thrill of the game.” The cybersecurity analogy that resonates most with him is that “Infosec is like chess.” Both bad actors and security teams are constantly strategizing, trying to anticipate and outmaneuver each other’s next move. This mental duel is what makes the field so captivating.”
His role at SSM ultimately led him to his role here at WashU. He notes that on the InfoSec team, “he is part of a large group of like-minded security professionals who truly enjoy the work.” Jeremy is one of the University’s leading Data Loss Prevention tool experts. Because of this, he has the opportunity “to work with different teams and colleagues from all over the University toward a common goal.” Jeremy’s current role is to “provide critical security technical assistance during privacy incidents, showcasing his ability to handle complex security challenges with precision and expertise.”
While Jeremy is not driving our security mission forward, he likes to dabble in several hobbies, “whether it’s the immersive gaming world, the aerial views captured through drone photography, or the thrill of piloting radio-controlled planes,” his “interests are as varied as they are engaging.” Jeremy has “also taken to woodworking, crafting pieces with his hands, and hitting the trails on his ATV for a dose of adrenaline.” He says that if you were to ask his wife, she’d probably say his favorite pastime is hiding out in the garage, and Jeremy says she’s probably right about that. Jeremy “loves working on his own vehicles, finding satisfaction in the blend of mechanics and craftsmanship.”
If you want to learn more about infosec, Jeremy “highly recommends picking up an older server from eBay and setting up a home lab for hands-on learners.” He notes that “this practical approach allows you to practice attacks and defenses, honing your skills in a real-world environment.” Jeremy believes “it’s an invaluable way to deepen your understanding of cybersecurity, making theory come alive through direct experience.”
Some resources on how to do this are linked here:
https://securityonionsolutions.com
https://medium.com/@henrylattice1738/building-a-mini-soc-lab-with-security-onion-fb852971bd40
After “earning his Sec+ certification,” Jeremy was able to launch his security career. He used a “comprehensive video series,” which was “integral to his preparation, providing valuable insights and knowledge essential for the certification.”
Jeremy has some insight for people interested in working in and around information security. In an ever-evolving field like cybersecurity, continuous learning and adaptability are crucial. He says it’s about understanding current threats and anticipating future challenges. Jeremy believes “collaboration is key, cybersecurity is a team effort, requiring coordination across multiple disciplines and departments.” Jeremy notes that building “a culture of security awareness and vigilance among all employees is essential for protecting organizational assets.”