Access "The Right Stuff"
This article is part of the July 2006 issue of Exclusive: Security salary and careers guide
No two CISOs have the same background, but successful ones have similar skills. Having recruited information security professionals for the past 10 years, I am asked one question more frequently than any other: "How do you become a chief information security officer?" Unfortunately, it's the most difficult question to answer. If you asked 100 CISOs how they landed their jobs, you would probably find 100 different paths to the top. A few common traits might emerge--for instance, few CISOs have come into their roles by exclusively working in information security. Most have backgrounds in general information technology, physical security, finance, legal, marketing and even human resources. While many security pros have been practicing information security for a long time, we tend to forget that the industry has only developed over the past 10 years--a relatively short time compared to other corporate disciplines like finance and sales. In each of these other professions, the career map is set; virtually all CFOs and vice presidents of sales have met certain ... Access >>>
Premium Content for Free.
- What's a Hot Pick?
Calculate You IT Security Salary
Learn how to calculate your IT information security salary based on certifications, job and years of experience, company size and industry.
Document Detective 2.0
- All In A Day's Work
The Right Stuff
SAVVY No two CISOs have the same background, but successful ones have similar skills.
- The XX Factor
What Are You Worth?
SALARY Six-figure security jobs have become common. Maybe you should slip this article into your boss's mailbox.
- 9 Habits of Highly Successful CISOs
Information security resume do's and don'ts
Get advice, and learn do's and don'ts for creating an information security technology or network security resume.
Hot Pick: Tenable offers solid vulnerability management
by Brent Huston, Contributing Writer
Product review: Tenable Network Security's Security Center 3.0 helps organizations throughout the vulnerability management lifecycle, from asset discovery to remediation.
Mobile Device Security
Mobile Guardian Enterprise Edition 5.1
Authentication: RSA SecurID Appliance 2.0
RSA SecurID Appliance 2.0
- Buy the Book
Moving On Up
SKILLS How do you rise in the security ranks? Don't speak geek; use the language of business.
Face-Off: Schneier and Ranum debate security certifications
Are security certifications valuable?
Perspectives: Security success sometimes hinges on politics and personalities
The best infosecurity professionals are situationally aware and attuned to what is happening to them and their environment.
Ping: Robert Garigue
- Editor's Desk
More Premium Content Accessible For Free
Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...
The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...
For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...