What do you wish security professionals would start/stop doing?

Security & GRCSecurity Operations Center (SOC)Security Strategy & Roadmap+2 more
4.2k views2 Upvotes6 Comments
Sort By:
Oldest
CEO and Co-Founder in Software3 years ago
We have to better communicate about threat. Still today, we have 16 iSCSI, 1000s of people on iSCSI, but nobody communicates the real substance. They keep talking about IOCs. To me, IOCs are stale fish. After 10 minutes, that IOC is useless.

On another note, my doctorate was on AI-based agents for large scale institutions. Today, I say stay away from agents if you can, because with API's, you really don't need agents. Everybody has real estate today, and their own assets. Whether you're an IoT or whether you're traditional with your MDR, EDR, you name all the three-letter acronyms, you have real estate. You can use API's, and you don't have to reinvent the wheel by installing yet another agent. I'm a firm believer in using what you have. Don't reinvent it.
Head of Information and Data Analytics in Software3 years ago
I am absolutely passionate about both AI and cybersecurity, and the community. There's quite a few opportunities in terms of building a community around cybersecurity, where for the most part, things have been siloed and more so the enterprise-centric old way of doing things. Obviously, as you just catch up, the world keeps changing. With the amount of change that is happening, it's hard for everybody to stay up to date. So I have a few thoughts in terms of creating a community for incident responders. Like we have tried with threat intelligence. It was good, but that's not actionable. So when we talk about specific incidents and sharing that knowledge among peers, that is actionable, which makes more sense.
Director Of Technology in Education3 years ago
Stop acting like they have a law enforcement background. Unless the security professionals have genuine experience at the CIA, FBI, or NSA it’s often a bit of an dog and pony show that turns off the audience. Be approachable rather than appearing knowledgeable.
2
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Principal Information Security Officer in Education3 years ago
Stop spreading FUD (Fear, Uncertainty and Doubt) to get increases in budgets and head count (rather than using real metrics, historical quantifiable risk data and fact-based evidence).
3
Director of Information Security in Manufacturing3 years ago
STOP thinking about security as some kind of super exclusive club, where you need to have a kazillion certifications to even get started into a career. Most of it is common sense and can be learned by doing!
4

Content you might like

If you have had a negative experience with a vendor (without naming the vendor), what did you learn from it?

Financial ManagementVendor Management
VP of Global IT and Cybersecurity in Manufacturing6 years ago
Have clear business requirements up front, make sure the proposal includes items such as scope, timeline, cost, resources.
Read More Comments
22.1k views3 Upvotes28 Comments

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

Any recommendations for a comprehensive GenAI learning platform?

EngineeringData & AnalyticsSecurity Strategy & Roadmap+4 more
IT Manager in Constructiona month ago
Hello,
the topic is so broad, what are you focused on?
Read More Comments
4.8k views2 Upvotes5 Comments

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Applications & PlatformsCloudData & Analytics+15 more
Head of Enterprise Architecture MERCK Group in Healthcare and Biotecha year ago
Strategy & Architecture
Read More Comments
39k views5 Upvotes34 Comments

In the past 6 months, have you seen an uptick in targeted cyberattacks on telehealth devices and networks?

Security & GRCNetworkThreat & Vulnerability Management+2 more

No Increase16%

1-5% increase47%

6-25% increase24%

26-50% increase6%

51-75% increase1%

76%+1%

Other2%

View Results
1.7k views1 Upvote