A good interview articles to read if you are a Network Security Analyst (like me now). All that Richard said was true and it was all around you if you notice it.
An Interview with Richard Bejtlich — GE Director of Incident Response.
Q: "What makes a good network security analyst?"
A: "First, you need to want to beat the bad guys. If you are entering the security field because you heard a commercial on the radio advertising higher pay, you will not get far. You need to understand the business you are protecting, the processes and the technologies. I recommend having some system administration experience. I’ve had multiple students in my classes who do not have the foggiest notion where to look for the files that comprise a static HTML Web site, for example. You have to understand the attacks the adversary employs. I’ve talked with people who “play defense,” but who have no interest whatsoever in learning how the offense operates. If you don’t know offense, how are you going to play defense? I think it’s important to read because it helps you stay current. You also need a curious mind and be detail-oriented so you can perform investigations."
Q: "Over the next 2-3 years, what are the biggest challenges you think the security industry is going to face?"
A: "I see several challenges. If it hasn’t happened already, people are going to wonder why they spent several million dollars deploying a SIM/SEM/SIEM, and they are “still being hacked.” I am exceptionally worried about clients being exploited via Web browsers and subsequently controlled via encrypted Web channels. I see more of our investigation and security tools being directly targeted. I think people are going to spend millions on NAC and also ask why they are “still being hacked.” I’m hearing that organizations with 80% NAC coverage are seeing intruders target the remaining 20%. Which, interestingly enough, are the most vulnerable already — all those embedded Web servers on printers, routers, etc… along with new consumer equipment. There’s no shortage of work."
Q: "And finally, are we really still secure after all these years?"
A: "Nope! :-) Security is “the process of maintaining an acceptable level of perceived risk.” It never ends."
:)
