Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Does Hollywood Have The Answer To The Security Skills Question?
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 2 / 2
User Rank: Ninja
3/6/2015 | 3:23:53 PM
Re: But who would be intreated?
Personally, I'm still a little confused as to why everyone seems to think there's an issue the skill level of information security professionals. I remember talking about this back in January (maybe), sure everyone can use more education, but if you're trying to draw a line from all of the hack\break activity to infosec professioanls and weak skills, I'd suggest looking at the corporate policy makers\enforcers instead. We as security professionals do not make the rules or determine what is most important to a company (unless they really want to hear it from us), no, we just take they're requirements and figure out the best way to secure it, and usually it's not what we would recommend, but you play the hand you're delt... besides, what's Hollywood going to do, make a movie about some heroic security guy\gal reviewing SIEM or AV logs... or cruizing through security blogs trying to see what's happening or arguing in a meeting with variuos business departments trying to explain why strong complex passwords are a necessity? Who'd want to see that? No, everyone wants to be a hacker... and even their depections of that are over the top as well as unreal.

User Rank: Strategist
3/6/2015 | 11:10:12 AM
But who would be intreated?
I don't know if there are any movie studios that would be at all interested in improving the uptake of InfoSec staff. Sure, you might say SONY, but they've repeatedly demonstrated a desire to cut security despite past breaches.
<<   <   Page 2 / 2

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2021-08-05
Cross Site Scripting (XSS) vulnerability exists in Subrion CMS 4.2.2 when adding a blog and then editing an image file.
PUBLISHED: 2021-08-05
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
PUBLISHED: 2021-08-05
A flaw was found in Wildfly Elytron where ScramServer may be susceptible to Timing Attack if enabled. The highest threat of this vulnerability is confidentiality. This flaw affectes Wildfly Elytron versions prior to 1.10.14.Final, prior to 1.15.5.Final and prior to 1.16.1.Final.
PUBLISHED: 2021-08-05
A vulnerability was found in the Linux kernel in versions before v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.
PUBLISHED: 2021-08-05
Unprotected Transport of Credentials vulnerability in SiteManager provisioning service allows local attacker to capture credentials if the service is used after provisioning. This issue affects: Secomea SiteManager All versions prior to 9.5 on Hardware.