Cyber Security Warfare
Over the years I have had the opportunity to see many different cyber security or information security programs. It would seem that most folks in the field are now used to preparing for the type of information warfare that is either underway against their enterprise or they are preparing for what they see happening to others. As infosec programs adapt, evolve and expand I see a greater emphasis on good layered, or defense in depth, security. It's great to see programs that "get it" and their desire to move towards a proactive approach rather than the traditional "whack-a-mole". Special thanks to one of the dudes who interviewed me for the whack a mole phrase.
As an infosec professional, it's very refreshing to see this shift in thought. Many times in the past I have seen or heard the many excuses that plague this field. So often budgets are not allocated for security or the wrong personnel are placed in the wrong position to affect needed change. As information warfare continues to escalate it's been comforting to see so many organizations that truly desire excellence in their programs from philosophy to implementation. I have also talked with several government entities or government contractors that are definitely ready to win the war against those people, groups, or nations that would want to use our data for harm against this great country. Better Internet neighborhoods are something I always wanted to see in the past but that I felt couldn't happen based on some of the issues I had run into over the past 7 years. I have hope now as I see these teams pushing towards their common goal.