Access "Building an information security skills matrix"
This article is part of the July/August 2010 issue of Debunking myths about the advanced persistent threat (APT)
Traditionally, when a company begins to search for an information security leader such as a CISO, they generally create a job description. Most standard job descriptions contain a detailed list of skills, experiences and certifications needed to be considered for a specific role. The more advanced the position, the more detailed the list. At face value, the resumes of many senior information security professionals are able to match job requirements that are outlined in standard CISO or information security leader positions. However, while it may be easy for many experienced information security professionals to believe they have the credentials to qualify for senior roles, many fall short. The primary reason is not due to experience or certifications, but due to a blend of tangible and intangible skills that cannot exclusively be found on resumes. As we look into the future and enterprises ingrain security into the corporate culture, competition for these positions will be increasingly difficult. Information security professionals are going to have to spend ... Access >>>
Premium Content for Free.
Security response teams grapple with cloud computing security concerns
No clear answers at conference but experts urge organizations to proceed with caution.
Understanding the advanced persistent threat
Think you know all you need to know about the advanced persistent threat? We'll define APT and dispel a few myths.
- Security response teams grapple with cloud computing security concerns
Building an information security skills matrix
Your information security skills matrix – that connection between your tangible skills and personal qualities – is what separates you from your peers.
The pros and cons of security software-as-a-service
Security software-as-a-service can help organizations reduce security headaches but also can present challenges.
- Building an information security skills matrix
Information security maturity model
by Chris McClean, Contributor
Use an information security maturity model to illustrate how security supports the organization.
Three hazards to avoid in planning a career in information security
Building a career plan just might lead security professionals headfirst into some dubious challenges.
Insecure software: A never-ending saga
Insecure software has been a long-standing issue in the industry. Progress on secure software development is critical.
- Information security maturity model by Chris McClean, Contributor
More Premium Content Accessible For Free
Compliance and risk modeling
You can fight compliance or embrace it, but one way or the other, you can’t escape it. Increasingly, smart organizations are not just accepting ...
Essentials: Threat detection
Antivirus and intrusion prevention aren’t the threat detection stalwarts they used to be. With mobile endpoints and new attack dynamics, enterprises ...
Managing identities in hybrid worlds
The world in which successful IAM programs must be implemented is increasingly complex, a mix of legacy on-premise IAM infrastructures, cloud-based ...