The Panacea of Information Security

The Panacea of Information Security
Jason Miller, 2004-08-12

Step away from all the vendor hype. The one device that will always be the best tool for information security is a competent security professional.

Expand all | Post comment

The Panacea of Information Security 2004-08-13
si (1 replies)

Supporting a much needed security upgrade doesn't count as vendor hype. 2004-08-13
DPH

The Panacea of Information Security 2004-08-13
Anonymous

The Panacea of Information Security 2004-08-14
Anonymous (1 replies)

The Panacea of Information Security 2004-08-17
Anominous

The Panacea of Information Security 2004-08-16
Anonymous

The Panacea of Information Security 2004-08-16
Anymouse (1 replies)

The Panacea of Information Security 2004-08-18
Anonymous

ROFL nice posting. Funny but unfortunately true :o(. Am recruiting Security Engineers at the moment and the quality of candidates is shocking. Many people think just because they did a Vendor Certification they are security experts. But ask about standard protocols like HTTP and SMTP and they can't even tell you what port it uses or if it is TCP or UDP based. And even more can't even state the difference between UDP and TCP. This "go to the shop around the corner and buy a bag of security" mentality is destructive and won't make a Network secure at all. How often i heard the sentence already 'How could we get hacked, we have a firewall'.... If i would get a buck for each time i hear that i would be richer than Bill Gates.

The best statement i heard about security was Bruce Schneier's 'Security is a process and not a product.' and this should be engraved on everybodies forehead.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/260/28007#28007