Security

Articles, advice and resources.

Is an Ethical Hacking Certification Worth Earning?

Bloomua Shutterstock
It seems like every other month that a major corporation suffers an epic hack, with millions of customers’ data stolen. In the aftermath of those attacks, many companies are turning to ethical or “white hat” hackers to test their defenses. But is ethical hacking an effective counter to unethical hacking, especially when those who practice the latter can do pretty much whatever they want with a wide variety of tools? Ethical hacking’s cause isn’t helped by the fact that the… continue…

Is Cyber-Liability Insurance Worth the Cost?

Nata-Lia Shutterstock
A growing number of companies ask vendors to buy cyber-liability insurance—and for a tech startup or an independent IT consultant, that cost can put a real dent in the bottom line. Cyber-liability insurance might include coverage for losses related to denial-of-service attacks, threats to intellectual property, business interruption, cyber extortion, and a variety of security breaches. An advisor such as an attorney or insurance agent can help firms properly assess the type and amount of cyber-liability insurance they might need,… continue…

Can Defense Companies Hire Hackers on Their Terms?

Department of Defense
Big-name aerospace and defense contractors like Boeing, Raytheon and Northrop Grumman are beginning to think that one answer to their cybersecurity recruiting needs  lies in the hacker community. After all, if you want to combat attacks from people who think out of the box, why not hire people who think out of the box? It’s ironic because all of these companies are known for being somewhat conservative—they work for the Defense Department, after all, and security to them is a… continue…

IT Security Pros: Are You Worth a Million Dollars a Month?

m00osfoto
Keith Alexander, former director of the National Security Agency (NSA), has decided to make money in retirement—a whole lot of money. According to reports, he wants corporations to pay him up to a million dollars a month for his IT security expertise. Alexander insists that he’s providing value for the money, in the form of proprietary technology that he claims will detect hackers who infiltrate corporate networks to steal everything from credit-card numbers to proprietary data. In a recent interview… continue…

Internet of Things Increases Need for Security Pros

Smart Home
The sheer number of “things” to be secured in the Internet of Things is expected to create a rash of jobs in cybersecurity over the next several years. “You’re going to have to secure the device or the sensor, you need to secure the data, and you’re going to have to secure that across an open network,” Intel’s head of business marketing, Stuart Dommett, told an IoT roundtable in May. “It really is a massive, massive change.” Click here to… continue…

Is This New Cyber Forensics Certification Worth the Investment?

(ISC)²
Continued pressure on cybersecurity systems is making professionals with security and forensic experience extremely attractive to employers. Not surprisingly, related certifications are gaining more attention, including one of the newer ones: the CCFP, or Certified Cyber Forensics Professional from the (ISC)². According to (ISC)² Executive Director W. Hord Tipton, the organization saw a need for a certification that was broader than those available for professionals working in and around law enforcement, intelligence, litigation, consulting and computer security. The CCFP’s target… continue…

Cyberattacks Focus Employers on Security Certifications

Security Watch
Continuing cyberattacks like those mounted against Target, eBay and Apple are pressuring companies to emphasize security even more than they have been to date. When it comes to hiring, that’s adding to the importance of certifications in IT audit, security, governance and risk. In many cases, that importance is translating into pay premiums for professionals that hold the credentials. Click here to see security jobs. Among the certifications in greatest demand are those from ISACA, an international association that focuses… continue…

More Than 300k Servers Still Threatened by Heartbleed

Screen Shot 2014-06-23 at 10.58.43 AM
When security researchers unveiled the “Heartbleed” security bug in April, it kicked off a worldwide freak-out. For years, the online world had operated on the assumption that OpenSSL was a secure protocol, trustworthy enough for people to use it for everything from email to financial transactions; thanks to Heartbleed, however, an attacker with a moderate level of programming knowledge could exploit a loophole to grab anything from passwords to encryption keys. Click here for security jobs. Following the announcement, developers… continue…

Network Concerns Drive Hiring for Security Professionals

Mobile Security
Demand for the skills necessary to secure networks and data continues to drive opportunities for security specialists. During April, job postings for security-related positions rose 20 percent year-on-year, according to business intelligence firm Wanted Analytics. Click here to search security jobs. More than 7,800 security-related postings were available during the month, the company said. The most commonly advertised jobs that included a need for security knowledge were cyber security analyst, software engineer, systems engineer, systems administrator and network engineer. Previously,… continue…

Banks Scramble to Find Big Data, Security Talent

Bank Vault
Banks are hot to hire IT professionals with Big Data skills, reports Bank Systems & Technology. “The big deal is Big Data. If you can harness it, you can benefit, so financial firms are funding those initiatives right now and hiring individuals with that background,” John Reed, senior executive director for Robert Half Technology, told the magazine. Especially needed are people who can help keep data secure, “as well as anyone who can assist them with their mobile banking efforts,”… continue…