Never judge an information security professional solely by certification

Recently I attended a gathering where a litigation lawyer was giving a presentation and made the statement, “The defendant’s information security officer did not have any type of security certification, such as a CISSP(Certified Information Systems Security Professional) or CISM (Certified Information Security Manager), which demonstrated lack of qualification for her position and negligence on the part of the hospital system that had hired her to fill that position.”

Hmm; that was a pretty bold statement. And one I do not agree. I know a lot of brilliant information security professionals without certifications who are some of the greatest experts in their specific areas of work.

Read full article on Dell Perspectives…

Leave a Reply

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s