I'm asking industry leaders, security executives and managers, and other noteworthy security names to answer ten questions on Twitter. This month, Brian Honan, infosec consultant, blogger, author and founder & head of Ireland’s Computer Security Incident Response Team (CSIRT), gives us his responses to ten questions in 140 characters or less.
Joan Goodchild @msjoanieg: Greetings, Brian! Let's start with hearing about your background. How did you get into a security profession?
BrianHonan @BrianHonan: I worked for a financial org in the 80s who were introducing PCs to the biz. My role was supporting them, which included security
@msjoanieg Tell us a bit more how your career path has evolved over the years.
@BrianHonan I moved from internal support, into a consulting role, then management responsible for 24x7 service & started my own firm in 2004.
@msjoanieg You're also founder and head of Ireland's CSIRT. How has that effort impacted security and the industry in your country?
@BrianHonan I hope it has raised awareness of threats facing Ireland, how to deal with them & how orgs should better manage their response
@msjoanieg What's your security "philosophy"?
@BrianHonan It’s security should support & enable the business. So we need to engage on all aspects, risk, tech, people, policy & procedures
@msjoanieg Interesting. What do you consider to be the biggest challenge in your career in carrying out that philosophy?
@BrianHonan Getting security ppl to realise its not just about the tech & learn to live with the fact there is no such thing as 100% security
@msjoanieg What's the best career or security advice you have ever received?
@BrianHonan "Keep your CV up to date you're a breach away from a new job" :) Seriously tho, "engage & share with your peers & the business"
@msjoanieg Ha! OK, what trends would you point to as the major catalysts for change in security over the last decade?
@BrianHonan The decentralisation of our data to PCs, remote acess, mobile devices, & now cloud services. BYOD is an extension of that trend
@msjoanieg Fill in the blank: If I didn't work in security I would ______
@BrianHonan "have a lot less stress in my work :) But it may not be as interesting and challenging as it is"
@msjoanieg Right. Never a dull moment in security. So, who or what inspires you?
@BrianHonan Those working to improve the industry & how we protect ourselves. Many go unnoticed as they do it simply to make things better
@msjoanieg Speaking of others in the industry, pass the buck now: Who should CSO tweet with next?
@BrianHonan I think @rik_ferguson would be a great guest and would have some interesting stories to share :)
For more insights and advice from today's security leaders, subscribe to CSO's monthly Security Leader newsletter. It's free - and sign up is quick and easy!