* Posts by gobbillygoook

2 posts • joined 24 Nov 2014

Think server vulns are the IT department's problem? Think again


Nothing new here...unfortunately

The article just rehashes all the talking points that those of us in InfoSec espouse and that falls on death management ears. Management just doesn't want to spend the money, generally speaking. And when they do, they think that they can just throw money in an IT pot and magic will come out without any follow through, day after day, year after year.

My personal thought is that we as InfoSec professionals - who really "get it" - need to be more adept at selling our ideas to MBA types that run the company. In some ways, I think we as a whole must be failing to a certain extent, when we go to get "buy in" on our ideas. Supposing we have a good case for some security measure, hiring of more employees etc., we need learn to speak the business language of these MBAs in order to get our point across...prior to the exposure and loss of critical data. Anyone can be convinced to increase IT security after a hack and loss occurs. As an aside, maybe we InfoSec folks need to hone up on our business skills so that we are the best candidates from senior management and HRs point of view when it comes to putting in place the next manager over IT/IS assets...we need to fully understand that which the MBAs do in order to talk the talk with them when it comes to management of folks - so called, "soft skills" - , finance etc.

FBI boss: We don't want a backdoor, we want the front door to phones


I'm not comfortable with the FBIs courts and warrants

He says that he's comfortable with the current courts/warrants but he just doesn't get it. To say that there are courts and warrants need to be issued is disingenuous at best. Secret court with no access to the warrants other than by "secret" people does not constitute openness in my view. And there, the call by consumers to have security built into the OS. The FBI and the rest of the intelligence agencies in the world get what they deserve when it comes to not being able to see what the actual bad guys are doing. They should've thought about that before the violated the public's trust in the first place.

Biting the hand that feeds IT © 1998–2019