What's Next with CCC?

Vaishali RawatVaishali Rawat
7 min read

Hi everyone. Those of you who are new here, I published a successful blogpost last week on my graduation from LFX mentorship with Confidential Computing Consortium. Thank you so much to an amazing team or should I call it a family. Besides, I hope y'all learnt something new. Today, we are here to do exactly the same. Learning something new.

"If you don't feel strong everyday, that's okay, that's normal. And everyday something new can inspire you, a small thought, an idea or action can change the course of your day, your week, your month, your year. You're never alone, you're never stuck, no matter how down you feel. Find a pep in your step, react to what's inspiring you by setting that into motion creatively".

"Whatever makes you excited about your day is important, and your dreams are more powerful beyond materialization of them."

"Our success is never just about us, it's also about all women that paved the way so we could be here. It's about the women we surround ourselves with and the characteristics we value, the inspiration and motivation women everywhere can give us to be better."

-Gigi Hadid, 2017

Where to begin ?

So this post is about letting you guys know, although its been a crazy ride and an amazing opportunity that came my way. I don't have it all figured out, just as you. This post is a reflection of a meeting I had last week, brainstorming career prospect and inspiring ideas. I would want to have our new technical architect a moment in this blogpost.

Introducing Sal Kimmich, our new technical community architect or should I call them a powerhouse in CCC๐Ÿ‘๐Ÿ‘๐Ÿ‘ Welcome Sal !!!!

And yeah, CCC has been supportive even after my term got over with them. And this is just the start about how cool they can be!!! They scheduled one-on-one meetings for helping me with full-time roles and Sal volunteered themself to help me with their vast wealth of knowledge.

This post is the result of our first one-on-one interaction. Yeah that's how inspiring Sal is ! Each heading is a question Sal asked me.

Below is a unstructured way you can potentially use to brainstorm over your potential next role. So really ask yourself.

#Question thyself what do you want?

  1. Surprisingly no recruiter asked me about what role I really want to indulge in. Normally, there is a job post and you yourself have to fit in. But lucky me, I had the privilege to be asked about my goals and what am I passionate about.

  2. I am readily passionate about sharing anything new that I learn with everyone. I feel many a times it's not about potential but just a lack of awareness that students are held back. So one up was, I can talk in conferences/spreading awareness.

  3. Secondly of Corse, I can write blogpost endlessly coz I feel I can be creative here. Take my own time and write at my own pace. Its really important to be in your own pace and work is not an ideal place to practice that however writing a blogpost on a weekend really is !!โ˜•

  4. I would love to bridge the gap between cutting edge technologies and beginners in open source. Open source is a lot more than just making PR's and doing web dev. Education is main motive of open-source. And Sal themselves vouched big on education specially in open-source. Education that no school, no university provides but is relevant very much in real life. Here every member of the org is a mentor and you yourself can be your mentor.

  5. I chose open source as my career path because it fulfils my hunger for knowledge. Everyday its a new story there. I wanted to be in touch with the latest technologies that are changing the world. And it is happening at a rapid pace. So there is no going back.

    #Look for motivation from your previous experience!!!

    If you want to pursue a complete different path that's okay. But CCC had such an influence over my personal branding that I want to pursue cloud computing even more.

  6. Looking at my experience with CCC, I worked on two different projects, Project Enarx and Project Veraison. Played with Rust, Attestation, verification and tokens. So, I had to choose where will I go with my knowledge with cloud computing particularly security.

  7. During my internship, I worked with experienced security professionals to implement and maintain robust security measures, identify and mitigate potential risks, and keep abreast of emerging threats and technologies in the field of cloud security.

  8. Cloud Security == Confidential Computing.

#Make your own Job description

Sal gave me this opportunity that no one ever gave me. They told me to come up with my own potential job description. So combining the above two, A) Doing what you love and B) a job that follows your previous experience. I came up with a job role that will suit me best.

I am also writing the Job description that I made for myself, that will help you guys to make your own as well.

I came up with a Junior Cloud Security Specialist role.

Key Responsibilities:

  1. Assist in the design, implementation, and maintenance of security controls for cloud-based environments, including but not limited to AWS, Azure, and Google Cloud Platform.

  2. Conduct regular security assessments and audits to identify vulnerabilities, misconfigurations, and other security issues.

  3. Collaborate with cross-functional teams to integrate security best practices into the development and deployment of cloud-based applications and services.

  4. Monitor security events and alerts, investigate incidents, and respond to security breaches in a timely manner.

  5. Develop and maintain security documentation, including policies, procedures, and guidelines related to cloud security.

  6. Stay up-to-date with industry trends, security standards, and regulatory requirements relevant to cloud computing and data protection.

  7. Participate in security training and awareness programs to promote a culture of security within the organization.

  8. Assist in the evaluation and selection of security tools and technologies to enhance the security posture of our cloud infrastructure.

I researched bit about its career growth opportunities.

Career Growth Opportunities: As a Cloud Security Specialist gains experience and expertise in the field, there are various opportunities for career advancement, including:

  • Senior Cloud Security Specialist/Engineer

  • Cloud Security Architect

  • Security Operations Center (SOC) Analyst/Manager

  • Security Compliance Manager/Auditor

  • Chief Information Security Officer (CISO) or Director of Cloud Security

#Why do I feel qualified for this job role?

Hmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm??Okay.

  • I have Bachelor's degree in Computer Science, Information Security, and an internship in related field.

  • Strong understanding of cloud computing concepts, architectures, and services that came with my full-time internship.

  • Knowledge of cloud security principles, protocols, and best practices.

  • Experience with cloud platforms such as AWS, Azure, or GCP, and proficiency in relevant security tools and technologies.

  • Familiarity with security compliance frameworks and regulations (e.g., GDPR, HIPAA, PCI DSS). My last to last internship had a project on PCI DSS, so I have a firm grip on that subject as well.

  • Excellent analytical, problem-solving, and communication skills. We can work on them over the period.

  • Ability to work effectively in a team environment and collaborate with diverse stakeholders.

  • Continuous learning mindset and willingness to stay updated on emerging threats, technologies, and industry trends.

I feel all of the above skills I got to learn with CCC. No cap.

End Note

Overall, cloud security specialists are indispensable in open-source environments, where ensuring the security, privacy, and integrity of data and systems is essential for the success and sustainability of projects and communities. Their expertise helps safeguard open-source infrastructure, platforms, and workflows, enabling collaboration and innovation while mitigating security risks. It requires continuous learning, adaptability, and a commitment to excellence in cybersecurity practices.

You can do this practice with yourself and your mentor to look out for next steps that can help you for your ideal job placement.

" Healthy organizations are the greatest assets " I want to give a huge shoutout to the CCC team Members I interacted with : Thomas Fossati, Riaan Kleinhans, Nick Vidal, Sal Kimmich, Richard J. Zak, Mayank Kumar, Ankita Pareek, Swatishree Mahapatra, Helen Lao, Leo and Ben. Thank you. Coz thank you's are really imp for me.

And as a ritual, here's a sneak peek into our session.

Thank you Sal for your invaluable insights๐Ÿ’.

1
Subscribe to my newsletter

Read articles from Vaishali Rawat directly inside your inbox. Subscribe to the newsletter, and don't miss out.

Written by

Vaishali Rawat
Vaishali Rawat

LFX Mentee'23 @ConfidentialC2 | Oss mentee @codess.cafe | Former team lead@GDSC | SWOC'23