http://www.informationweek.com/news/global-cio/personnel/240002918
By Cindy Waxer
InformationWeek
July 02, 2012
They're the bane of the IT security professional's existence when
they're on the wrong side of the law, but the truth is, hackers often
understand the nuances of network security better than your average CSO.
So is it safe to bring a hacker into your IT team?
According to Shane MacDougall, there are pros and cons to hiring a
hacker. MacDougall is a partner at Canadian security consultancy
Tactical Intelligence, a hacker at the DEFCON Hacking Conference, and
last year's winner of Social-Engineer.org's The Schmooze Strikes Back
hacking contest.
"Every IT department needs to hire an ethical hacker," says MacDougall.
But his advice comes with a warning: "You really do need to check the
background on who these people are, who they've been hanging with, and
who their crews are." MacDougall offers these tips for hiring a hacker
that's right for your IT shop:
Ensure a good fit. No two hackers' skill sets are exactly the same. For
this reason, MacDougall recommends that you carefully consider why you
need to hire someone in the first place.
[...]
--
Learn how to be a Pen Tester, CISSP, ISSMP, or ISSAP with Expanding Security
online.
Come to a free class and see how good and fun the program really is.
http://www.expandingsecurity.com/PainPill
