Network Computing Dark Reading

Advertise

Application Security

8/28/2017
10:50 AM

Ericka Chickowski
Slideshows

Connect Directly

0 comments
Comment Now

100%

10 Time-Consuming Tasks Security People Hate

Whether it is dealing with false positives, reporting to auditors, or patching software, here's the scut work security people dread.

1 of 11

Image Source: Adobe Stock Services

No matter how much you love your job, there's a reason it is called work. For security professionals there are a lot of necessary duties that are as time-consuming as they are thankless, but nevertheless, are part of the work.

We polled some security experts to get their thoughts on the most dreaded tasks and organized them by the roles most expected to shoulder them.

Learn from the industry’s most knowledgeable CISOs and IT security experts in a setting that is conducive to interaction and conversation. Click for more info and to register.

Ericka Chickowski specializes in coverage of information technology and business innovation. She has focused on information security for the better part of a decade and regularly writes about the security industry as a contributor to Dark Reading. View Full Bio

1 of 11

Comment |

Email This |

Print |

RSS

More Insights

Webcasts

Consistency is Key with Cloud Security

Using Security Champions to Build a DevSecOps Culture Within Your Organization

More Webcasts

White Papers

How to Build an Effective Threat Hunting Program

Gartner Report: 2017 Critical Capabilities for SIEM

More White Papers

Reports

IT Threat Intelligence & How Enterprises Are Using It

How Enterprises Are Attacking the IT Security Problem

More Reports

Comments

Newest First | Oldest First | Threaded View

[close this box]

Be the first to post a comment regarding this story.

Hot Topics

Editors' Choice

Windows 10 Security Questions Prove Easy for Attackers to Exploit

Kelly Sheridan, Staff Editor, Dark Reading, 12/5/2018

Starwood Breach Reaction Focuses on 4-Year Dwell

Curtis Franklin Jr., Senior Editor at Dark Reading, 12/5/2018

Symantec Intros USB Scanning Tool for ICS Operators

Jai Vijayan, Freelance writer, 12/5/2018

Live Events

Webinars

More UBM Tech
Live Events

Enterprise Connect 2019 - Build Your Comms & Collaboration Future

Communications & Collaboration 2022 at EC19 Orlando March 18-21

White Papers

TitaniumCloud File Intelligence vs. VirusTotal

STIX/TAXII: What You Need to Know

Threatscape of the US Election from Anomali Labs

The SOAR Buyer's Guide

Edge Expander

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: I guess this answers the question: who's watching the watchers?

Cartoon Archive

Current Issue

10 Best Practices That Could Reshape Your IT Security Department

This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises Are Using IT Threat Intelligence

Large organizations are harnessing data about cyberattackers and their exploits to improve the safety of their critical data. Find out what they're doing.

Download Now!

How Enterprises Are Attacking the Cybersecurity Problem

0 comments

Online Malware and Threats: A Profile of Today's Security Posture

0 comments

The Risk Management Struggle

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-3988
PUBLISHED: 2018-12-10

Signal Messenger for Android 4.24.8 may expose private information when using "disappearing messages." If a user uses the photo feature available in the "attach file" menu, then Signal will leave the picture in its own cache directory, which is available to any application on the...

CVE-2018-10008
PUBLISHED: 2018-12-10

A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java that allows attackers to invoke some methods on Java objects by accessing crafted URLs that were not intended...

CVE-2018-10008
PUBLISHED: 2018-12-10

An information exposure vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in DirectoryBrowserSupport.java that allows attackers with the ability to control build output to browse the file system on agents running builds beyond the duration of the build using the workspace br...

CVE-2018-10008
PUBLISHED: 2018-12-10

A data modification vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in User.java, IdStrategy.java that allows attackers to submit crafted user names that can cause an improper migration of user record storage formats, potentially preventing the victim from logging into Jen...

CVE-2018-10008
PUBLISHED: 2018-12-10

A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop.

Terms of Service
Privacy Statement
Legal Entities