Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
70% of DevOps Pros Say They Didn't Get Proper Security Training in College
Newest First  |  Oldest First  |  Threaded View
Connoryk
50%
50%
Connoryk,
User Rank: Apprentice
8/25/2017 | 4:59:05 PM
Re: The flipside
Universerity of Denver, Colorado (School of Business) launched a cyber risk management course three years ago. The course is part of the Risk Management and Insurance program and covers the dark side of the digital era, including risk management techniques applicable as part of entperise wide risk management/cyber risk management frameworks. Not suprisingly, the curriculum is updated every year. Teaching cyber risk management is both a dynamic and challenging effort given the inability to rely on static information (textbooks, models, etc.). Nevertheless, the class is in high demand and the graduates report the class assists in their resume'positioning and post graduate job success.

 
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
8/23/2017 | 8:51:34 PM
Training
This is an issue that has started to get more attention, particularly with business, nonprofit, and public-sector partnerships through organizations like MIT's IC(3). Business and government want to see more cybersecurity coursework offered in colleges because they're currently in the position of having to compete for the talent that's out there and/or invest resources in training people themselves.
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
8/18/2017 | 9:12:05 AM
Re: The flipside
This is is something a new career field - not as long as computers in general (anybody remember what a Novell CNE was!!)  I would wager that most security professionals just fell INTO the career from some other field in the computer support industry.  Our job path led us there.
WCLoehr
100%
0%
WCLoehr,
User Rank: Strategist
8/17/2017 | 12:10:33 PM
The flipside
What would be interesting to know some more about is for the small minority that did get security training in college. How was it structured? What it dedicated courses or was the security education woven into other classes? 


COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/25/2020
Google Cloud Debuts Threat-Detection Service
Robert Lemos, Contributing Writer,  9/23/2020
Shopify's Employee Data Theft Underscores Risk of Rogue Insiders
Kelly Sheridan, Staff Editor, Dark Reading,  9/23/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-24565
PUBLISHED: 2020-09-29
An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the ...
CVE-2020-25770
PUBLISHED: 2020-09-29
An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the ...
CVE-2020-25771
PUBLISHED: 2020-09-29
An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the ...
CVE-2020-25772
PUBLISHED: 2020-09-29
An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the ...
CVE-2020-25773
PUBLISHED: 2020-09-29
A vulnerability in the Trend Micro Apex One ServerMigrationTool component could allow an attacker to execute arbitrary code on affected products. User interaction is required to exploit this vulnerability in that the target must import a corrupted configuration file.