There is a bill, S.773, floating around the Senate that will require cybersecurity professionals in the future to be licensed, similar to how a general contractor, electrician etc is licensed. Furthermore, according to CNET News, “[the bill] appears to permit the president to seize temporary control of private-sector networks during a so-called cybersecurity emergency.”
Will this bill pass? Or even more important, is it a good idea?
I don’t think we will see a license requirement anytime soon. When I was at Blackhat I saw Booz, Northrup, and the like executing a massive recruiting effort. The government is trying to hire thousands of cybersecurity professionals. Requiring licensing will delay this by years as those in the field get licensed. With the various security certifications we have now, who will be the governing body to determine what data goes into the certification? Most of the certifications in my view are worthless and I would take a guy (or girl) that has been “on the front lines” before I take a person with 4 certifications and little experience.
What about the ability to take control of private networks in an emergency? From my experiance, there is no way in hell I want the government touching my private network. most government networks are LESS secure than their private counterparts! Furthermore, there has been a massive brain drain from government to the private sector for cyber security positions so who will have the best skilled people available in case of an emergency? Perhaps we should let the private sector take control of government networks during a crisis?
Interested in reading the 55 page excerpt?
Related posts
Email This Post
Print This Post
{ 1 trackback }
{ 0 comments… add one now }
You must log in to post a comment.