Role of a Security Professional

Security professionals are doing the following to protect critical data:

  • Hardening systems and applications to make them more difficult to attack
  • Adding layers of defense
  • Performing security scans to find vulnerabilities
  • Conducting internal audits of security controls
  • Training personnel to recognize intrusion attempts
  • Improving security in partner and supplier organisations
  • Updating business processes to include security procedures
  • Image result for security professional

Many technologists think that an information security program is all about technology: That technology is the root of the problem and technology will solve all problems. If this describes you, I appeal to you to open your mind to other ways of thinking about information security. Information security may involve a lot of technology but is at its root a people issue. Information Security professionals act as Generals of army responsible for protecting the territory (assets) against enemy (people) who are careless insiders, malicious outsiders, and many in between.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s