Ethics, Integrity, and Playing Nice
As security professionals we are paid to know how to do bad things. We must know how to do these bad things in order to defend from bad people. What separates us from the criminals is our integrity. We hack for the good of humanity.
As security professionals we are paid to know how to do bad things. We must know how to do these bad things in order to defend from bad people. What separates us from the criminals is our integrity. We hack for the good of humanity.Some people believe it is wrong to openly discuss what ethical hackers do, know, and what they are capable of doing. It is as if ethical hackers only have the ability [read: ability not motive] to compromise systems while under an NDA and only if being paid, but return to a Forrest Gump like state when between jobs where they lose all ability.
Is it wrong to state that we could in fact do bad things if we were so inclined, such as compromise banks, steal government secrets, or socially engineer a free pizza?
As a consultant, my clients pay me to ethically compromise their most prized assets in order to help improve their organizations.
Admitting that I have the ability to compromise someone's bank account is simply an admission of my ability. Much as Tiger Woods stating he can drive a golf ball 297.8 yards or Michael Jordan stating he can slam dunk a basketball from the free throw line. A [ethical] hacker admitting he is a [ethical] hacker is nothing more than self-realization.
If the world is too afraid of people with the knowledge to commit crimes whom do not have the motive or intent, then we should reexamine many areas of our lives. If a hacker can't speak of his abilities, then a police officer cannot discuss how he is able to determine if a white powdery substance is flour or something more. A pathologist cannot write a book on how to determine the death of a person. I could go on, but you get the point. If you haven't picked it up yet, the point is our integrity keeps us on the right side of the law and should not be easily questioned as it is the basis of who we are and what we do. What do you think? Let me know on the twitter, email, or comment on the blog.
Off to [ethically] hack the planet! HACK THE PLANET!!!
About the Author
You May Also Like
A Cyber Pros' Guide to Navigating Emerging Privacy Regulation
Dec 10, 2024Identifying the Cybersecurity Metrics that Actually Matter
Dec 11, 2024The Current State of AI Adoption in Cybersecurity, Including its Opportunities
Dec 12, 2024Cybersecurity Day: How to Automate Security Analytics with AI and ML
Dec 17, 2024The Dirt on ROT Data
Dec 18, 2024