Nada Noaman is an energetic and versatile business leader, with over two decades of strategic cybersecurity and management consulting experience. She currently serves as Chief Information Security Officer (CISO) and Senior Vice President at The Estée Lauder Companies. She has experience in cybersecurity strategy, transformation, and program development in both private and public sectors, with much of her cybersecurity expertise from over a decade of experience in the Intelligence Community (IC), Department of Defense (DoD), and international NGOs. She has led security programs for clients ranging from those in technology, entertainment, media, communications, hospitality, aerospace and defense, retail and consumer, and financial services industries. Aside from her profession, Nada is passionate about building the next generation of cybersecurity professionals, especially from underrepresented communities.

Read on to learn how Nada got into cybersecurity and her advice for new professionals entering the field.

------------------------------------

I love telling the story of how I got into cybersecurity. I was in general Information Technology (IT) at the time, and my manager reached out to ask if I’d be interested in working on an information security project. I immediately declined: “Thanks for thinking of me, but no thanks! Security means telling people all the things they can’t do and shouldn’t do.” That wasn’t what I wanted in a career path. I wanted to make technology faster, better, smarter – not hold people back. I ultimately accepted the role “on a temporary basis” and went on to be recognized as a lead on that team. I made my philosophy, “The answer is not NO; it’s HOW. Show people how to do what they need to do securely.” 

That’s been my philosophy ever since. I absolutely love a challenge. You need to get from point A to point B? Let me help you do it the most secure way possible. And that applies to every element of cyber, compliance, and risk. 

One practical piece of advice I have for a student new to this field: find what inspires you and let it motivate you to make a brand for yourself. 

I don’t think of myself as a cyber leader. I think of myself as the conduit between the company’s mission and our cyber mission: to do what we do at The Estée Lauder Companies, in the most secure and reliable way possible. I believe my role is to inspire my team of security experts to do what they do best, all while thinking of what our company does and why we’re here in the first place. Cyber leadership can often be too far in one of two lanes - too deep in the data and details or too high in the sky. One has to strike the right balance between both. And my team’s goal and impact is to keep that balance in check which often means making tradeoffs. But that’s life, right? Nothing in life ever lines up perfectly all at the right moment, so sometimes you lean heavily where it matters most. 

Managing and reducing risk means knowing where you stand, knowing what’s at stake, and knowing what the timeline and mission is – and that balance is constant in cybersecurity. Think of it as going to the doctor: that’s a classic game of risk management and balance. Sometimes they’ll advise you that their concerns are acute and require immediate action to survive. But then there could be concerns to monitor over time, and perhaps even a few things you can do to proactively improve yourself. That’s the balance of risk management and how we must pick our battles to succeed. In the game of cybersecurity, the threat actor is always ahead of you. You have to do your best to stay current, stay competitive, and stay in the game!

Stay curious. Never be satisfied with where you are and what you know. This is an ever-changing industry, with new fields and domains popping up every year. And, new opportunities to grow and evolve right along with it. When you become complacent or think you’ve mastered a subject, you’ll be proven wrong in the next turn. So, keep your currency through endless learning and endless curiosity. The more you are genuinely interested in the field, the more you will grow and succeed and stay in demand. 

And, as a woman, I will say the unique advice I’d give a young woman in this space – is to trust your instincts. You have a lot to share and the more you give power to your inner thoughts, ideas, and perspectives, the more we will benefit from your thought leadership. It may take a while to build your confidence, but try to partner with subject matter experts, coaches, mentors, and advocates alike to help build that confidence. Always remember, we need you!

‍

‍