- +
Adobe launches hosted services, adds Flash to Acrobat 03 June, 2008 09:02:44
Adobe to launch Web site offering users free hosted services for document creation, sharing and storageAdobe this week is set to unveil the next version of its Adobe Acrobat software, which adds support for the company's Flash multimedia technology. The company also plans to launch a new Web site offering users free hosted services for document creation, sharing and storage.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. The IP Storage payoff: Turning your investment into efficient, affordable results
How to Protect Business from Malware at the Endpoint and the Perimeter
Using EMC Celerra IP Storage with Vmware Infrastructure 3 over iSCSI and NFS
Application Modernization: Preserving Your Organization’s DNA
EMC Solutions for Databases Microsoft SQL Server 2005 Nseries iSCSI
SOA Governance: Rule your SOA
The State of Internet Security
Extending Business Solutions across the Organisation
Newsletter Subscription
I often hear from IT executives that it is hard to recruit and retain "good security people." Many lament the shortage of skills in this area and cannot reconcile the skills offered with the positions that need to be filled. Is there really a shortage of good security people? Or just a mismatch in the skills and the jobs?
We've spent a few recent editions of this column looking at security from an operational perspective and a risk-management perspective. From that perspective, there are two types of security skills that might be needed in a company: tactical security operations and strategic risk management. Unfortunately, many companies don't do a good job of separating the two and end up asking people to do both. The two skill sets are rarely found in one person. Worse, asking someone with a strategic risk mind-set to do operational security, or vice versa, often leads to job dissatisfaction and eventually resignation.
Operational security requires attention to details, a methodical and meticulous work ethic, and an ability to process large amounts of information. In a network or security operations center (NOC/SOC), operators are presented enormous amounts of data and need to be able to quickly discover the root cause of any alarm or event, and make efficient and effective decisions reactively. Contrast that type of work with the strategic risk-management work. A security professional who is responsible for managing risk will have to think strategically; look at the big picture; present difficult choices to a management team; and balance conflicting requirements, conflicting turfs and priorities while advancing the interests of the whole company.
The personalities required for these jobs are radically different, yet people are still surprised when someone quits after trying and failing to fulfill both jobs at the same time. Not only is this difference in roles important for hiring and retention, it is also important to keep in mind when deciding on a managed security service. When deciding to outsource part of security, companies are increasingly doing so primarily because of a lack of skills rather than to reduce cost.
Before outsourcing security functions you have to consider what type of people you currently have and how you can best use them? If you excel at operations, then outsourcing the SOC might be a bad idea. If you excel at risk management and want to "free" your security experts from the operational role they grudgingly fill, outsourcing could give you a way to refocus and re-energize your internal team.
There might be a shortage of security skills, but I think there's a much bigger problem of mismatched skills and jobs. Understanding the strengths of your current team will allow you to apply their skills better, but also make them happier and less likely to leave.
2008 CIO Summit
19th August, 2008 Four Seasons Hotel, Sydney Developed in partnership with CIO Magazine, IDC, INTEP and the CIO Executive Council.
The world of the CIO is extremely complex and diverse. Multiple priorities demand attention and decisions are needed instantly. Individual teams need to be driven towards common goals, and businesses strive to become more mobile, agile and responsive. For CIOs, the challenge never ends.
Every year the CIO Summit identifies what is top of mind for CIOs across Australia and New Zealand, and offers insight for CIO benchmarking and vendor strategic planning alike.
Recent IDC research shows that over 59% of CIO's believe that 'to achieve their business strategies, technology should be used more aggressively than today.'
Join us on August 19th to discover how this is possible with the latest technologies including Virtualisation, Web 2.0, IP Surveillance and Software as a Service (Saas).
Click here for more information.
Please email Denyse_Robertson@idg.com.au for further information.
- +
CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II 05 October, 2007 06:00:00
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #78: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires 28 September, 2007 17:34:25
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #77: Panasonic Speeds Up Trans-Pacific File Transfers, Part III 21 September, 2007 07:00:00
Part three in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #76: Panasonic Speeds Up Trans-Pacific File Transfers, Part II 14 September, 2007 07:00:00
Part two in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #75: Panasonic Speeds Up Trans-Pacific File Transfers, Part I 07 September, 2007 07:00:05
Part one in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
- +
Citibank debit card fraud highlights ATM vulnerabilities 08 July, 2008 08:17:53
'Back-end servers are kind of a joke,' and the trouble doesn't end thereMalicious ATM intrusions, such as the late-winter breach that resulted in the compromise of Citibank debit card data, are not at all surprising given the vulnerable state of many of the servers and other components involved in processing such transactions, according to some industry representatives. - +
How to not have your Web site hacked like Sony's 07 July, 2008 08:23:22
A SQL injection attack was used to plant malicious code on pages of two popular Sony Playstation games - SingStar Pop and God of War, reports security company Sophos. Hundreds of Web pages from other businesses have also been compromised.The US Sony Playstation Web site is the latest high-profile victim of a hacker attack on business sites that's spreading malware at breakneck pace, says a security vendor. - +
AG launches review into national e-security 07 July, 2008 11:07:49
Howard's security agenda dragged over coals.A review of Australia's top e-security projects lead by the Attorney-General's Department has been launched to scrutinise the Howard's government's $73 million E-Security National Agenda. - +
Selling zero-day exploits has a down side 07 July, 2008 10:16:36
There is an ongoing argument about the ethics of selling 0-day exploits on the open market: It helps if you don't sell exploits targeting the company you work for.Information Security can sometimes be a funny field to work in. Some days it seems as if anybody with their hands on unpublished exploit code can sell it for all they're worth, and others it seems that they are set to become the target of law enforcement and the companies the code affects. It does help if you don't work for one of the companies that is set to be affected by the exploits you are trying to sell and aren't trying to bootstrap a competing company in the process. - +
'I have a lost laptop horror story for you' 30 June, 2008 10:08:14
The devil of identity theft is in the details that follow...The devil of identity theft is in the details that follow: Russ Jones tells a tale of woe that isn't particularly dramatic -- or rare -- and yet it's exactly the kind of story that worries me enough to ignore my better judgment and buy identity-theft protection from my insurance provider.
Zepto release the Mythos, the 2nd installment in the Centrino 2 refresh 09 July, 2008 12:05:00
Symantec Data Protection Solutions Preferred by Users and Industry Experts 09 July, 2008 11:56:00
Frost & Sullivan: Australia’s Mobile Advertising Spend to Grow 300 Per Cent in 2008 09 July, 2008 07:57:00
DIARY ALERT - Symantec data leakage prevention seminars 08 July, 2008 17:20:00
Dimension Data Appoints New National Human Resources Director 08 July, 2008 16:58:00
|
||
|
||
|
|
||
|
EMC Solutions for Databases Microsoft SQL Server 2005 Nseries iSCSI
Discover how to maintain service levels, reduce costs, reduce risk and accelerate implementations in mid size enterprises with EMC Solutions for Microsoft SQL Server Nseries iSCSI.
Subscribe to CIO
