Wednesday, March 10, 2010

Hackfester!

So I attended the HackFester seminar last night for the Phoenix Plug group (Phoenix Linux Users Group).

I was a tad bit disappointed on the lack of preparation they had done. It is is understandable that the speaker that was suppose to be there fell ill so I will give it another shot.

I did get some nice information limited but very nice as to what some of the government officials are looking at to do any kind of networking or system administration.
The majority of government agencies are requiring their IT security personal to be certified in CISSP (Certified Information Systems Security Professional).

He also spoke of how they making a transition into having their contractors and employees needing further certifications similar to CISA (Certified Information Systems Auditor).

I have not done to much research on these subjects but I find that if we as contractors and employers have to fork out all this money who ultimately will have to pay for it. As our government is severely tight on money and our contractors are having to cut prices just to get work. With some of these certifications running in the thousands of dollars for initial certification (testing fees, book fees, and instructor lead courses). Then on top of that some of these certs require you to renew every year at an additional cost. Then you as a hacking professional must maintain continued education hours and meet a goal of around 120 hours of additional training in the area your certificate is in. Lucky this is only required for every 3 years so you have time to spread out the 120 hours.

So if you wish to get into some security work and want to cover yourself well these are a few of the certifications that you will need to achieve prior to looking for government contract work.

There was talk of even requiring contractors who either doing this kind of work and / or are certified to be required to care a 1 million dollar bond plus some E & O (Accidental Errors & Omissions) insurances. This kind of information make me want to not do this on my own anymore!

I am hoping that next months meeting will be turned around and better prepared. There was talk of alternate Hacker seminars that have weekly meetings. I am doing some research to try and locate them so that I am attend and see how they are. Who knows maybe they will be what I am looking for.

For more information on Security Certifications look at

To see the top threats on he web look at

To see current internet storm threats

Thanks for reading

No comments:

Post a Comment