Careers & People

10/12/2018
05:00 PM
50%
50%

Most IT Security Pros Want to Change Jobs

They cite five main reasons for wanting to move on - and what it would take to retain them.

If you're an IT security professional looking for a new job, you're not alone. A new report on IT security job trends finds that 60% of survey respondents are looking to leave their current positions.

Limits on job growth and dissatisfaction with their current jobs are the leading reasons security pros say they are seeking a change, according to the report. An unhealthy work environment, lack of IT security prioritization, and unclear job expectations round out the top five drivers for change.

What would it take for the survey respondents to stay in their current positions? Improved work-life balance, management who takes their security concerns seriously, and better sponsorship for new courses and certifications are the big winners.

Read more here.

 

Black Hat Europe returns to London Dec 3-6 2018  with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier security solutions and service providers in the Business Hall. Click for information on the conference and to register.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
RyanSepe
100%
0%
RyanSepe,
User Rank: Ninja
10/15/2018 | 9:29:44 AM
An unhealthy work environment (Brand Reputation)
Historically, Information Security has been seen as the NO police. This poor brand reputation of the department makes other departments less agreeable towards collaboration. As security professionals we understand that if security is not ingrained in development of apps, processes, etc that it is less effective and more reactive then proactive. This is starting to change but I would say no where close to where it needs to be to make for a comfortable work environment.
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
10/15/2018 | 9:25:30 AM
Lack of IT security prioritization
The Security field has been changing in a more positive fashion but its still not to the point where I would consider the Security field ideal. More companies are taking an interest in security, but if you don't have a CISO that has a seat at the table it seems to take a band-aid approach and doesn't align with best practices. In this way it is very difficult to prioritize security based endeavors.
Devastating Cyberattack on Email Provider Destroys 18 Years of Data
Jai Vijayan, Freelance writer,  2/12/2019
Up to 100,000 Reported Affected in Landmark White Data Breach
Kelly Sheridan, Staff Editor, Dark Reading,  2/12/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-1695
PUBLISHED: 2019-02-15
IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 134177.
CVE-2018-1701
PUBLISHED: 2019-02-15
IBM InfoSphere Information Server 11.7 could allow an authenciated user under specialized conditions to inject commands into the installation process that would execute on the WebSphere Application Server. IBM X-Force ID: 145970.
CVE-2018-1727
PUBLISHED: 2019-02-15
IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 147630.
CVE-2018-1895
PUBLISHED: 2019-02-15
IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...
CVE-2019-4059
PUBLISHED: 2019-02-15
IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently protect the document database password. An attacker could obtain the password and gain unauthorized access to the document database. IBM X-Force ID: 156583.