2.7 million / no security by 2012
Submitted by SteveA (not verified) on Thu, 2008-05-01 09:58.
MR - glad you backed off on the 2012, but I think even 10 years from now there will be security specialists.  While I don't always agree with Bruce Schneier, security people think "differently" and I think we'll always need people dedicated to go after bad guys.  Network Security, Database Security, well, yes, Network and database people will worry (more) about security.  Application folks,   hmmm  that's still open to debate in my mind.  Security Policy.... do I want lawyers writing that?  Probably not.   Compliance checkers (auditors) - well maybe that gets broadened beyond security, to risk and governance.   Yes, in my 40 years using computers (34 in business) the world has changed, yes I did use a slide rule at one time.We still need barbers, plumbers and electricians, I suspect we'll see some folks who's specialty will by information protection and assurance for quite awhile... besides we always need someone to pin the next breach on... maybe that's it - one position - "security guy/gal".  Main responsibility, explain why you didn't do a good job explaining the risk to the CEO so he accepted it when he/she shouldn’t and now you are all over the front page of the WSJ!

Proudly CISSP and CISM  - but more proudly pragmatic. 

Actually when I read the press announcement for this piece I was intrigued.  then I read thru the whole report...   ISC2 clearly had its agenda for F&S.  58% of the respondents were from companies less than 500 people, relevance to me dropped off dramatically.

SA

 

Reply

The content of this field is kept private and will not be shown publicly.

More information about formatting options