Certification - December 2008 - (Page 46)

Learning about the business aspect is important, Wolfe said, because the requirements of security are mapped to the regulatory requirements, such as SOX compliance generally, Gramm-Leach-Bliley Act compliance in the financial sector or HIPAA compliance in the health care industry. It’s important for security technicians to have an understanding of how businesses are organized so they know what is and isn’t appropriate data for people to be allowed access to. we can’t have them on a project by themselves, [so] it depends on the types of projects [they are assigned].” On smaller, one- to two-person projects, soft skills are a must. “On projects like that, having good communication skills [and] interpersonal skills is an absolute requirement because there’s nowhere to hide,” Wolfe said. Additionally, entry-level security employees looking to advance into management and take on more responsibility must have good communication skills — and that doesn’t just mean talking to colleagues. They should be able to interact with and present to both customers and executives. “As they progress, if they have [good] communication skills, they might start to do design work and get involved in the discovery sessions we do with customers in pre-sale,” Wolfe said. “Once they’ve got a couple of projects under their belt and they’ve demonstrated that they’ve mastered the work for certain types of projects, we might give them a chance to run a project.” Entry-level security technicians are required to do a lot of grunt work such as coding, but they do get opportunities to do some hands-on work — usually under the supervision of a senior colleague. “If you just have an applications development background, then there are roles we have that people can add a lot of value for us. But by having an understanding of the business side, people have a much better ability to go in and be more consultative,” Wolfe said. For instance, a security technician might work with customers to perform an IdM road map and assessment. To do this, it is imperative to understand how the business operates and to be well-versed in some of the processes associated with it, such as on- and off-boarding. At Laurus, the next step up would be a project leader position and then a practice lead, which is a person who oversees projects and performs the design and estimation with a handful of people reporting to him or her. The next role would be that of a practice manager, who would be in charge of a number of practice leads. Future Prospects On a bright note, the market seems to point to a need for more professionals in the IT security field, Wolfe said. “[Issues surrounding] security are only getting more complicated,” he said, noting that regulation was a significant talking point during the 2008 U.S. presidential race. “[It] always ends up boiling down to more things on audits [that] people are going to be looking for, and that will translate to more experts needed to go in and assess whether the security program or the way security is being implemented in an organization is in compliance with the regulation,” he said. Further, the fear of outsourcing is low in IT security, as it is difficult to outsource these jobs to Asia or anywhere else, Wolfe said. 8 – Deanna Hartley, dhartley@certmag.com Nontechnical Requirements Though nontechnical skills — specifically soft skills — always are an invaluable asset, Wolfe said they’re not a prerequisite for undertaking certain projects. For instance, typically, a team of five to seven people will work on larger projects. “If [a person’s] English communication skills aren’t really solid but they’re technically very sound, we can still have [that person] add value on those larger projects because our people will manage them and they’ll be the technology experts,” Wolfe said. “We’ve had people who are real superstars with the technology, but 6 CERTIFICATION MAGAZINE December 2008 Table of Contents for the Digital Edition of Certification - December 2008Certification - December 2008Editor's LetterContentsData StreamVirtual VillageTech CareersDear TechieAcademic Connection - Maximize Your HolidaysTroubleshootingWhat We LikeLook AheadCertMag’s Salary Survey 2008The Total Cost of an IT EducationInterface - When It Comes to IT, Vieo Gets Down to BusinessEntry-Level Security Technician: Laying the GroundworkInside Certification - Cisco Updates Provide Up-SkillingRequired in Today’s Networking SpaceAd IndexEndtagCertification - December 2008Certification - December 2008 - Certification - December 2008 (Page Cover1)Certification - December 2008 - Certification - December 2008 (Page Cover2)Certification - December 2008 - Editor's Letter (Page 3)Certification - December 2008 - Contents (Page 4)Certification - December 2008 - Contents (Page 5)Certification - December 2008 - Data Stream (Page 6)Certification - December 2008 - Data Stream (Page 7)Certification - December 2008 - Virtual Village (Page 8)Certification - December 2008 - Virtual Village (Page 9)Certification - December 2008 - Tech Careers (Page 10)Certification - December 2008 - Tech Careers (Page 11)Certification - December 2008 - Dear Techie (Page 12)Certification - December 2008 - Dear Techie (Page 13)Certification - December 2008 - Academic Connection - Maximize Your Holidays (Page 14)Certification - December 2008 - Academic Connection - Maximize Your Holidays (Page 15)Certification - December 2008 - Troubleshooting (Page 16)Certification - December 2008 - Troubleshooting (Page 17)Certification - December 2008 - What We Like (Page 18)Certification - December 2008 - What We Like (Page 19)Certification - December 2008 - Look Ahead (Page 20)Certification - December 2008 - Look Ahead (Page 21)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 22)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 23)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 24)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 25)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 26)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 27)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 28)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 29)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 30)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 31)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 32)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 33)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 34)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 35)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 36)Certification - December 2008 - CertMag’s Salary Survey 2008 (Page 37)Certification - December 2008 - The Total Cost of an IT Education (Page 38)Certification - December 2008 - The Total Cost of an IT Education (Page 39)Certification - December 2008 - The Total Cost of an IT Education (Page 40)Certification - December 2008 - The Total Cost of an IT Education (Page 41)Certification - December 2008 - Interface - When It Comes to IT, Vieo Gets Down to Business (Page 42)Certification - December 2008 - Interface - When It Comes to IT, Vieo Gets Down to Business (Page 43)Certification - December 2008 - Entry-Level Security Technician: Laying the Groundwork (Page 44)Certification - December 2008 - Entry-Level Security Technician: Laying the Groundwork (Page 45)Certification - December 2008 - Entry-Level Security Technician: Laying the Groundwork (Page 46)Certification - December 2008 - Entry-Level Security Technician: Laying the Groundwork (Page 47)Certification - December 2008 - Inside Certification - Cisco Updates Provide Up-SkillingRequired in Today’s Networking Space (Page 48)Certification - December 2008 - Inside Certification - Cisco Updates Provide Up-SkillingRequired in Today’s Networking Space (Page 49)Certification - December 2008 - Inside Certification - Cisco Updates Provide Up-SkillingRequired in Today’s Networking Space (Page 50)Certification - December 2008 - Ad Index (Page Cover3)Certification - December 2008 - Endtag (Page Cover4)http://www.nxtbook.com/nxtbooks/mediatec/cm1209http://www.nxtbook.com/nxtbooks/mediatec/cm1109http://www.nxtbook.com/nxtbooks/mediatec/cm1009http://www.nxtbook.com/nxtbooks/mediatec/cm0909http://www.nxtbook.com/nxtbooks/mediatec/cm0809http://www.nxtbook.com/nxtbooks/mediatec/cm0709http://www.nxtbook.com/nxtbooks/mediatec/cm0609http://www.nxtbook.com/nxtbooks/mediatec/cm0509http://www.nxtbook.com/nxtbooks/mediatec/cm0109http://www.nxtbook.com/nxtbooks/mediatec/cm1208http://www.nxtbook.com/nxtbooks/mediatec/cm1108http://www.nxtbook.com/nxtbooks/mediatec/cm0908http://www.nxtbook.com/nxtbooks/mediatec/cm0808http://www.nxtbook.com/nxtbooks/mediatec/cm0708http://www.nxtbook.com/nxtbooks/mediatec/cm0608http://www.nxtbook.com/nxtbooks/mediatec/cm0508http://www.nxtbook.com/nxtbooks/mediatec/cm0408http://www.nxtbook.com/nxtbooks/mediatec/cm0308http://www.nxtbook.com/nxtbooks/mediatec/cm0208http://www.nxtbook.com/nxtbooks/mediatec/cm0108http://www.nxtbook.com/nxtbooks/mediatec/cm1207http://www.nxtbook.com/nxtbooks/mediatec/cm1107http://www.nxtbook.com/nxtbooks/mediatec/cm1007http://www.nxtbook.com/nxtbooks/mediatec/cm0907http://www.nxtbook.com/nxtbooks/mediatec/cm0807http://www.nxtbook.com/nxtbooks/mediatec/cm0707http://www.nxtbook.com/nxtbooks/mediatec/cm0607http://www.nxtbook.com/nxtbooks/mediatec/cm0507http://www.nxtbook.com/nxtbooks/mediatec/cm0407http://www.nxtbook.com/nxtbooks/mediatec/cm0307http://www.nxtbook.com/nxtbooks/mediatec/cm0207http://www.nxtbook.com/nxtbooks/mediatec/cm0107http://www.nxtbook.com/nxtbooks/mediatec/cm1206http://www.nxtbook.com/nxtbooks/mediatec/cm1106http://www.nxtbook.com/nxtbooks/mediatec/cm1006http://www.nxtbook.com/nxtbooks/mediatec/cm0906http://www.nxtbook.com/nxtbooks/mediatec/cm0806http://www.nxtbook.com/nxtbooks/mediatec/cm0706http://www.nxtbook.com/nxtbooks/mediatec/cm0406http://www.nxtbook.com/nxtbooks/mediatec/cm0306http://www.nxtbook.com/nxtbooks/mediatec/cm0206http://www.nxtbookMEDIA.com

For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.