Engineering is about enabling outcomes, but security engineering is about preventing the wrong ones. It’s a discipline rooted in risk management, requiring both technical skill and an adversarial mindset to protect systems from misuse, not just make them function.