RE: RE: CISSP Question

["Laundrup, Jens" <Jens.Laundrup () METROKC GOV>]

Worrisome, yes, because when you have a person that has been spit out by a "certification mill" but has little or no 
experience, they make it past HR into the hiring manager's hands.  The person with great experience will fall thought 
the cracks.  It gets even worse for the larger companies that have computers do the first sort of résumés, there the 
selected will come from those who had the wherewithal to copy the job description into the resume.  

I tested that once by simply putting the job description into the document, white lettering and really tiny font.  It 
worked beautifully, I was asked to interview for a position where I had few credentials, no experience (accounting 
auditor position, all my auditing is IT).

Jens C. Laundrup, CISSP


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of David Harley
Sent: Thursday, May 10, 2007 6:50 AM
To: null_zero () hotmail com; security-basics () securityfocus com
Subject: RE: RE: CISSP Question

> The point is that MOST of HR people in today's businesses are 
> not much into the business they run, i mean, when they 
> interview a security manager they don't discuss in depth 
> issues, they just look at their certs. the rest are 
> complementaries. If the interviewer liked you, you're in, 
> otherwise you're out.

A worrying thought. I'd hope that most businesses wouldn't base their
assessment of a candidate's suitability purely on the prejudices of someone
from HR, but I dare say it happens. :(

-- 
David Harley CISSP, Small Blue-Green World
Security Author/Editor/Consultant/Researcher
AVIEN Guide to Malware:
http://www.smallblue-greenworld.co.uk/pages/avienguide.html
Security Bibliography:
http://www.smallblue-greenworld.co.uk/pages/bibliography.html