That has nothing to do with anything.
-
-
(Colleges not teaching infosec) Is this changing? What is the best path /now/ for effective trng? College or OTJ?
-
My honest answer: Infosec is a huge field. Many facets. Management and Execs of large companies will need more theory, policy.
-
That is where formal education would be a very desirable asset. I also think that this academic field is probably pretty immature. (compare
-
... to real-world challenges). At the VP, engineer, manager, technician, and even small-company CIO/CSO level, talent/skill/experience
-
... is what I see being far more desirable than formal infosec education.
-
Where a company has to do formal Certification (HIPAA, PCI, RMF, etc), you need a paper-pusher, with legal authority to sign-off on risk.
-
... more than someone who's good at wireshark. But when someone's attacking your network, you need that wireshark and routers person.
-
... it can be a waste of time to have one person doing both roles. The paperwork side is mind-numbingly boring and time-consuming.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.