[46468] in North American Network Operators' Group
Re: How to get better security people
daemon@ATHENA.MIT.EDU (Sean Donelan)
Fri Mar 29 14:23:02 2002
Date: Fri, 29 Mar 2002 14:22:31 -0500 (EST)
From: Sean Donelan <sean@donelan.com>
To: nanog@merit.edu
In-Reply-To: <1020326195411.ZM19063@burlma1-sshare2.gtei.net>
Message-ID: <Pine.GSO.4.40.0203291344010.5876-100000@clifden.donelan.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Tue, 26 Mar 2002, Kelly J. Cooper wrote:
> I also had a short list of other questions that I used to try and get
> a feel for the person's "security minded-ness" (my term, I invented it
> a'ight?). Because when it comes to ISP security, there's a very
> limited pool of talent so candidates are unlikely to come in with the
> right skillset native.
What is the right mindset for ISP security. It seems to be a little
different from the traditional security mindset found in the corporate
or military security world. A lot of sharp people with that background
try to move into ISP security, but they often have a difficult time
making the transition. The government is about to spend a lot of
money training students in "cybersecurity." Congressional aides have
been coming to Internet conferences asking people what should Congress
spend money on.
http://www.washingtonpost.com/wp-dyn/articles/A33471-2002Mar28.html
But are the students really getting the right training for working in
a public network such as an ISP?
