By John S. Monroe
GCN.com
Jan 06, 2010
Nothing irks a security professional more than the suggestion that the federal government could improve security by setting up a standard certification program for agency staff members.
This idea, which is gaining traction in Congress, might sound reasonable. But many security experts say it is a red herring. One such expert is Daniel Castro, a senior analyst at the Information Technology and Innovation Foundation, who wrote a column on the topic [1] for FCW.com.
"If certifications were effective, we would have solved the cybersecurity challenge many years ago," Castro wrote. "Certainly more workforce training, although not a panacea, can help teach workers how to respond to known cyberattacks. However, workforce training is not certification, and organizations, not Congress, are in the best position to determine the most appropriate and effective training for their workers."
His column triggered a flurry of reaction from readers, most of whom seconded his remarks by sharing observations and experiences of their own. Here is a sample of the responses, which have been edited for length, style or clarity.
skip to main |
skip to sidebar
10% off Kaspersky Internet Security 2010
10% off Kaspersky Internet Security 2010 - Everything you Need for a Secure and Safe Internet Experience Offer Expires 08/10/10
Coupon Code: KASUK10%OFF
10% off Kaspersky Internet Security 2010
10% off Kaspersky Internet Security 2010 - Everything you Need for a Secure and Safe Internet Experience Offer Expires 08/10/10
Coupon Code: KASUK10%OFF
Huge Discounts with iRemove
Blog Archive
-
▼
2010
(119)
-
▼
January
(59)
-
▼
Jan 08
(7)
- Celebrity Live Cam
- Nicolas Sarkozy given 'impenetrable' superphone
- Spear-Phishing Experiment Evades Big-Name Email Pr...
- Certifications: A false sense of security
- Hacker pierces hardware firewalls with web page
- Microsoft won't fix Windows 7 crash bug next week
- Easily spoofed traffic can crash routers, Juniper ...
-
▼
Jan 08
(7)
-
▼
January
(59)
