Security Breaches – A Short List

Security Breaches

Here are a basic sampling of Security Breaches that have been gathered from across the Internet. Who’s really winning this cyber war?

Hackers bait Zeus botnet trap with dead celeb tales

UPDATE: Idaho Power says Mercer breach affected over 375,000

UK insurer hit with biggest ever data loss fine

Judge approves Countrywide Financial ID theft settlement

Laptop stolen from U Kentucky had info on newborns and mothers

UConn notifies 10,174 applicants of laptop theft

Bank of America settles Countrywide data theft suits

College students slowest to respond to ID theft

Look for a weekly list from this point forward.

Wils Bell
President
SecurityHeadHunter.com, Inc.
POB 620298 * Oviedo, FL 32762
Direct: 407-365-2404

Why I Don’t Share Client Name

Why I Don’t Share the Name of Client on First Recruiting Call

When I am recruiting for an open Security Job that is not a retained search, I usually do not share the name of my client with a cold called candidate for several reason,  until we have talked in detail.

First, I interview many candidates daily, and unfortunately I must tell several that they are not a match for “this job”.  Perhaps future jobs, but not this one. It does not mean that are not a good security candidate, just not a good match for this job. Sometimes, they on the other hand, feel that they are a great fit and want to proceed with the interview process. When I explain that the client wants and expects me  to pre-screen heavily so as only to present dead on matches, they get upset.  I have had these people try to go directly to the client themselves or call other recruiters and ask them to present them. If the company name has not been discussed, it protects me.

Also, I have had some very good intentioned people that knew my client name simply mention  to a friend or co-worker that I called and discussed a great opportunity with them at XYZ company and the friend or co-worker simply goes directly to the company without thinking about me. They did not mean to cut me out, they just did not realize they should call me to present them. After all, I am dealing directly with the hiring authority and can make things happen.

Please be aware that I do share the client name as soon as we (you and I) determine that it is a good match and worth proceeding forward with the process.

Since this is how I earn a living for me and my family please don’t be insulted by the process and my guarding my client name until we agree it’s a match.

 

Happy Holidays,

 

Wils Bell – Security Recruiter

Bell (at) SecurityHeadhunter.com

SecurityHeadhunter.com, Inc.

SecurityHeadHunter.com

 

Desk: 407-365-2404

Cloud Security – Are You Prepared?

It appears most companies are not prepared for Cloud Computing Risk and Security.  It’s not clear if companies don’t have the means to verify that Cloud service providers are actually providing the security they say they are or companies have failed to provided adequate processes to test themselves. 

Remember, it’s the corporation whose data is breached that is ultimately liable for the breached data, not the service provider that agreed to protect it adequately. Granted, managing the security of cloud computing is a new area and it will take time to mature the process, but liability still falls back to the corporation not the service provider. (see my post on Data Breaches Can Cost you Millions)  Over 80% of  companies responding to a survey admit they do not have formal process in place to audit how well a service provider is living up to there security standards.

The technology of how we work and play is changing and companies are adapting to data flows in more places to achieve more objectives in complex regulatory environments. All these new circumstances take time and resources to deal with and the fact that Information Security budgets are shrinking (another post this week) does not help this issue.

 

By:  Wils Bell, President

 

LinkedIn Profile: http://www.linkedin.com/in/wilsbell 
SecurityHeadhunter.com, Inc.

Information Security Recruitment Since 1990
Phone: 407-365-2404
eFax: 407-956-4976

Email: Bell@SecurityHeadhunter.com