Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Edge Articles

02:00 PM
Joan Goodchild
Joan Goodchild
Edge Features

10 Security 'Chestnuts' We Should Roast Over the Open Fire

These outdated security rules we all know (and maybe live by) no longer apply.

Roast: We Must Only Hire Security Candidates with These Certifications and Qualifications

Amid a documented skills gap -- the InfoSec Institute says the shortage of cybersecurity professionals has grown to nearly 3 million globally -- it's time to do away with narrow criteria for who will be a good fit for many security roles, says Fredrick "Flee" Lee, CISO at Gusto, a provider of payroll, benefits, and human resource management software.

"We'll see a shift in the way we look at resumes by placing less importance on pedigree and certifications, and we'll see a switch-up in interviewing processes so that candidates are evaluated based on true security mindset and problem-solving skills versus their ability to manage security tools," Lee said.

(Image: Couperfield, via Adobe Stock)

(Continued on next page)

Joan Goodchild is a veteran journalist, editor, and writer who has been covering security for more than a decade. She has written for several publications and previously served as editor-in-chief for CSO Online. View Full Bio

3 of 11
Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
User Rank: Strategist
12/9/2019 | 3:53:27 PM
Re: challenge questiions
You beat me to it. Challenge questions have value so long as you use meaningless answers. In many cases I let the password manager generate additional random passwords and then enter those as challenge question answers.  Also, if possible I choose questions that have little or no applicibility to me.

So, challenge questions DO have some value if they are meaningless and/or random.
User Rank: Apprentice
12/9/2019 | 9:07:47 AM
challenge questiions
Regarding Challenge questions.  Agree with the points made by the author.  That said, there's no reasons why the answers need to have anything to do with reality.  I give 'fraudulent' answers all the time.  Just remember to write questions & answers in your password manager.  ;-)
Name That Toon: The Devil You Know?
Flash Poll