Announcement

Collapse
No announcement yet.

CISSP designation

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • CISSP designation

    As physical security is including more IP related devices and computer knowledge levels increase, are security supervisors & managers going to need training in information technolgy? Of course it does depend on your employers needs.

    I noticed at least one university is offering a prep course towards the CISSP, is a combination of knowledge (physical & IT) the way we are going?

    https://www.isc2.org/cgi-bin/index.cgi

    http://ce-online.ryerson.ca/ce/calen...5&mode=program
    Quote me as saying I was mis-quoted.
    Groucho Marx

  • #2
    I firmly believe that technical security should be a blended approach with networking, social engineering, physical security of servers and client terminals, and education.
    Some Kind of Commando Leader

    "Every time I see another crazy Florida post, I'm glad I don't work there." ~ Minneapolis Security on Florida Security Law

    Comment


    • #3
      I may be wondering if anyone has a crystal ball to see the future, but do you see physical and IT security coming (morphing, evolving)under one director for in house operations and even contract?
      Quote me as saying I was mis-quoted.
      Groucho Marx

      Comment


      • #4
        Not in the near future, honestly. The CIO is a powerful position because business runs on technology. The Plant Manager is not really that powerful of a position.

        Where most physical security operations are contracted, the technical security operations are in-house and part of the whole IT infrastructure. Most technical security professionals are also network engineers, web designers, and application developers who added a second discipline.

        Convergence is happening in the contract world in "IT Crisis Situations," where the company has the possibility to lose its data or have the data comprimised by a disgruntled worker.

        This is where physical security contractors with "IT Response Teams" come in. The "IT response team" comes in under false pretenses, sets up snort filters, makes backups, isolates the servers and client workstations, starts hunting for viruses and other zero-day attacks the night before. That morning, the physical security team secures the server room and the "digruntled employee" is terminated.

        This is an era where one pissed-off man can completely destroy a company, both legally and financially. After all, with such things as Sarbanes-Oxley, Requirements of E-Mail Archival, the ability to remotely get into both Windows/Mac OS X Server/Linux platforms... All it takes is one pissed-off IT manager or worker to go, "Screw all ya'alls, I'm deleting your data and making a backup copy of all your source code available on the web."
        Some Kind of Commando Leader

        "Every time I see another crazy Florida post, I'm glad I don't work there." ~ Minneapolis Security on Florida Security Law

        Comment

        Leaderboard

        Collapse
        Working...
        X