In Depth

Security Geeks: From Isolation to Rock Stars

IT security pros used to be seen as propeller-hat wearing introverts who hid in dark basements. But the blogosphere, podcasting and social networking has changed things dramatically. Here's how

By Bill Brenner, Senior Editor

And, echoing Lewis, he said the proliferation of security podcasters means more important information is getting shared, allowing security pros to engineer a more effective cyber defense.

Agreeing with these views is Chris Hoff, chief security architect for the systems and technology division at Unisys and keeper of the Rational Survivability blog. But, he noted, a vast majority of IT security pros are still introverts working from the basement, and these people should never change, despite the growing belief that everyone in this profession should be required to have strong writing and public speaking skills.

"The notion that everyone involved in security needs to be able to put themselves out there, get up and give a presentation to the board of directors is ridiculous," said Hoff, known on Twitter as "Beaker." "We still need skilled operators in the trenches, continuing to do what they do in the basement. Do I want to discourage someone who is fantastic at pen testing by telling them their career will be limited if they can't put together a PowerPoint presentation for the board? If you want to be a technician, be a technician. I have guys I wouldn't bring out in public but I rely on them to get the job done."

Hoff used a military analogy to make his point. There are generals who are meant to be the public face and lead, and there are the soldiers who spend all their time muddy and bloodied, quietly taking the fight to the enemy.

"We need all of these people in security," he said.

Other stories by Bill Brenner

• Email
• Print
• Comments
• Digg This
• SlashDot

• LinkedIn, Facebook, Twitter Users Beware
• Social Networking Security Risks
• CSOonline.com Podcast Index