Posted on Aug 25, 2017
Cyber Defenders Are Often Not Fired, When Others Would Be
1.37K
8
3
6
6
0
The military is a skills and standards based organizations. Are standards important? If you dig a 6 inch foxhole and someone throws a grenade at you....will you be safe? Will you survive? You have a foxhole and a foxhole can give protection from mortars and grenades, it says that in an FM or manual. So, what happens in your 6 inch hole? Do Cyber Defenders pay the same price?
I know this is tough...not fair, and near impossible, but success has standards.
I know this is tough...not fair, and near impossible, but success has standards.
Cyber Defenders Are Often Not Fired, When Others Would Be
Posted from incyberdefense.com
Cyber
Employment
Security
Technology
Information Assurance
Posted >1 y ago
Responses: 2
0
0
0
No. This is a terrible idea. In 2015 CISCO conducted an survey to gauge the cost of incident response. They concluded that it would cost a company roughly $1.2B to respond to all of incidents that Cyber Defenders prevent.
Now let's talk about Target since this is the authors defining example. The heads of Target weren't fired because of the Credit card loss. They were fired for a few reasons:
They stored CC numbers on the point of sale machines unencrypted
They used the same password across every store
They had the HVAC system on the same subnet as the POS
They allowed FTP from POS devices.
That's why the CTO was fired. His defense policy was not acceptable in any organization, let alone a world wide realtor like Target.
Now let's talk about Target since this is the authors defining example. The heads of Target weren't fired because of the Credit card loss. They were fired for a few reasons:
They stored CC numbers on the point of sale machines unencrypted
They used the same password across every store
They had the HVAC system on the same subnet as the POS
They allowed FTP from POS devices.
That's why the CTO was fired. His defense policy was not acceptable in any organization, let alone a world wide realtor like Target.
(0)
(0)
0
0
0
if they fired "cyber defenders" every time something got hacked we would have none. would you fire soldiers that got ambushed on a patrol? sh!t happens, you learn from your mistakes, and you build policy and new measures off that.
(0)
(0)
SSgt GG-15 RET Jim Lint
Actually, if you are a patrol leader and lead your patrol into ambushes every week...yes, you would be fired. As an intelligence guy in Korea in a Signal Unit, I never got in trouble for not predicting a cyber attack.
If I was in 2ID and my Bde got probed on MON and TUE....Attacked with destroyed equipment on WED and THUR and FRI I would be fired as incompetent.
If I was in 2ID and my Bde got probed on MON and TUE....Attacked with destroyed equipment on WED and THUR and FRI I would be fired as incompetent.
(0)
(0)
Read This Next
Continue with Facebook 
Continue with Google