Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: application for an employment

From: "Sadler, Connie" <Connie_Sadler () Brown edu>
Date: Wed, 22 Mar 2006 08:54:23 -0500
 
I completely agree with Don. I've been watching this thread. I can tell
you that I've hired many security professionals over the 20+ years I've
been in the IT Security field, and if someone told me this in an
interview, I would politely cut the discussion short - and that would be
the end of it.

Check out the Ethics clauses in any of the IT Security Professional's
organizations. This is *not* an approach that would be embraced by any
hiring manager I know.

Connie J. Sadler, CM, CISSP, CISM, GIAC GSLC
Director, IT Security, Brown University
Box 1885, Providence, RI 02912
Office: 401-863-7266

-----Original Message-----
From: Don Bailey [mailto:don.bailey () gmail com] 
Sent: Tuesday, March 21, 2006 1:50 PM
To: security-basics () securityfocus com
Subject: Re: application for an employment


I say go for it. If they can't take criticism, then you shouldn't be 
working for them anyways. If they are really interested in improving 
the infrastructure, they will evaluate your finding, and consider you 
as as suitable candidate for fixing the security holes.



I completely disagree. Proving that you've been poking around
unauthorized is a dangerous venture. Most likely it will prove that you
are incapable of reigning in your curiosity and the company will
consider you a threat more than a benefit. Companies don't like cowboys,
they want a team player. Curiosity killed the contract.

Don "north" Bailey


------------------------------------------------------------------------
---
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich
University program offers unparalleled Infosec management education and
the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity
Planning, Computer Emergency Response Teams, and Digital Investigations.


http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---


---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Tailor your education to your own professional goals with degree
customizations including Emergency Management, Business Continuity Planning,
Computer Emergency Response Teams, and Digital Investigations.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: