actually just the former. Robert Garigue characterized firewalls, nids, et al 
as good network hygiene. The equivalent of a dentist telling you to brush your 
teeth. An infosec pro needs much more depth than that. The model is charlemagne

-----Original Message-----
From: "McGovern, James F (HTSC, IT)" <[EMAIL PROTECTED]>
Date: Thursday, Mar 8, 2007 10:27 am
Subject: [SC-L] What defines an InfoSec Professional?

If you have two individuals, one of which has been practicing secure coding=
 practices and encouraging others to do so for years while another individu= al 
was involved with firewalls, intrusion detection, information security p= 
olicies and so on, are they both information security professionals or just=
 the later?

************************************************************************* This 
communication, including attachments, is
for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information.  If you are not the intended 
recipient, any use, copying, disclosure, dissemination or distribution is 
strictly prohibited.  If you are not the intended recipient, please notify the 
sender immediately by return e-mail, delete this communication and destroy all 

Secure Coding mailing list (SC-L)
List information, subscriptions, etc -
List charter available at -
SC-L is hosted and moderated by KRvW Associates, LLC (
as a free, non-commercial service to the software security community.

Reply via email to