Skip Links

Network World

Keatron Evans

How the economy might hamper security efforts.

By Keatron Evans on Fri, 01/23/09 - 2:51pm.
Newsletter Signup

As the economy seems to get worse, I've noticed a few trends concerning my clients, and clients of colleagues;

For one, since I sometimes teach penetration testing, I'm exposed to a wide array of security professionals. One thing I've seen a lot of over the last six months is corporations cutting security staff while trying to pump security knowledge into whom ever is left. In previous years, at least half of a 10 student class were individuals dedicated strictly to security in their job roles. Now out of 10 students I'm lucky if 1 or 2 are dedicated strictly to security. I recall when security first became "an issue", there was similar behavior. We'd get database guys, programmers, and network engineers who were told they were in charge of security now, and here's a week long class to prepare you for it. As need for strong security skills grew, we saw the birth of more security specific jobs. Now it seems that economic conditions are almost forcing us to go back to where we once were, at least in a general sense of speaking. This could be an opportunity for us to improve, but it could also create a temporary weakness in the security chain that might have devastating results. Time will tell.

Now, for the good side. Although security staff seems to be being trimmed some, compared to most other areas of technology, we're not being hit nearly as hard. The only thing that frightens me is that many corporations are mistakenly thinking security and compliance are synonymous. Another past mistake we've made.

Post new comment

The content of this field is kept private and will not be shown publicly.
  • You can use BBCode tags in the text.
  • Lines and paragraphs break automatically.
  • Allowed HTML tags: <p> <strong> <i> <br /> <br> <ul> <ol> <li> <dl> <dt> <dd> <blockquote>

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Welcome, visitor. Register Log in
About Author Expert: Keatron Evans

Keatron Evans is a senior penetration tester and principal of Blink Digital Security, based in Chicago. He has more than 11 years experience doing penetration tests, vulnerability assesments and forensics. Keatron regularly consults with and sometimes trains government entities and corporations in the areas of network penetration, SCADA security, and other related national infrastructure security topics. He holds several information security certifications including CISSP, CSSA, CEH, CHFI, LPT, CCSP, MCSE:Security, MCT, Security+, and others. When not doing penetration tests, you can find Keatron teaching ethical hacking and forensics classes worldwide.

We are giving away 15 copies of Keatron's book Chained Exploits: Advanced Hacking Attacks, which will be published in February. Go here for entry details.