 |
|
| CURRENT SECTION :: News |
The No. 1 Resource for UK IT Contractors: Comprehensive guides - Daily news IT contract jobs - Market rates - Forums - IT contractor network - Calculators |
|
 |
Infosecurity Europe 2006 is a mammoth trade show sprawled across the carpet tiles of Olympia and the surrounding mezzanine like a giant pulsating blanket. Black-t-shirted techies rub shoulders with the world’s infosec elite, while gift-girlies pounce on the unsuspecting to offer carrier bags, sweets, memory sticks and hosts of giveaways emblazoned with company logos. “Five years ago, the show wouldn’t have been anything like this,” says Bruce Fowlie, senior consultant for Symantec Consulting. He believes information security has become an important, and distinct, discipline, as distinct as law, project management or accountancy. But regulation and worries over compliance to regulation and legislation are leading companies to ask tough questions of their security-involved staff: rude questions like “are you competent to do the job?” Nick Coleman, CEO of the Institute of Information Security Professionals (IISP), has witnessed something of a rush since opening for business in January, and judging by the throng gathered around the tiny stand tucked under the balcony, it’s likely to continue. He says the IISP has mined a seam of untapped demand. What’s been missing, he says of security contractors, “Is an understanding of if those people are professionally competent, with independent accreditation.” “Sarbanes Oxley has asked companies to certify their systems as competent,” the natural question is to then ask if the staff and contractors are competent to create, run and administer those systems, he says. “The information security industry has matured, and now competency and professionalism is getting there as well. You have large organisations [the IISP], what will they look for? Will they not want their contractors to have a professional recognition?“ Taking a look around the exhibition, it’s easy to understand why companies need some reassurance. Vendors offer everything from magazines to adware-scanners, to intelligent network agents capable of roaming the internet looking for threats. Understanding Information security requires a deep technical knowledge. This complexity had undoubtedly fuelled demand for security contractors and consultants, says Jason Creasy, head of projects, Information Security Forum. “For the security consultant it’s great news. The complication is something that they can deal with easily,” he adds. Creasy sees the coming years as a big opportunity for security experts of all sorts, and particularly for the individual contractor operating as a consultant. “It’s a win-win situation for that guy. They are going to be in more demand, and it’s not that difficult to learn new solutions. Plus they’ll be backed up by the vendors,” he says believing that SMEs (small and mid-sized enterprises) will open wide to accept security advice. “There is more need for security consultants because of the public requirement for it. More smaller-organisations will have to take security seriously – the larger ones have done so already. The SME market is a great opportunity for the security consultant.” But while some are extending a warm welcome, others are squeezing the market. Users’ difficulties with security products are leading to better-featured, easier to use products, and ideas are changing so quickly it’s a challenge to keep informed. “Vendors are building more and more security directly into their products, in that respect the role of the individual security specialist is diminishing,” says Creasy. “There is room for people to diversify, but you have to be manoeuvrable. For example, it was anti-virus; it’s now aniti-spyware; it was email; now it’s (IM) instant messaging. Email security is still there, but IM has compounded it,” he adds. And companies are beginning to train their own staff. Fowlie warns that the ongoing development of in-house skills, driven by a realisation of the importance of information security, will take some shine off the opportunity. Nonetheless, he says the future is bright for security consultants while regulation and awareness of security issues are still evolving. Meanwhile The Association of Technology Staffing Companies yesterday told CUK, “That any contract or full-time role to do with security is flying high in terms of the hourly rate.” So the verdict from Infosecurity 2006 and beyond is: be professional, keep up to date, and the fears of the SME market will result in cash in the pocket until the technology becomes so simple anyone can use it. In other words, for a long time to come yet. William Knight Apr 26, 2006 Email this article Printer friendly page Previous Page
|
|
 |
||||||||||||||||||||||||
| All content © Contractor UK Limited | [Register for News Letter] | [Privacy Statement] | [Terms of Use] | [Top of Page] |