Rapid changes to the IT security landscape in the past two years have left internal staff struggling to keep abreast of new threats.
Few IT shops are well equipped to deal with the level of forensic analysis required to deal with compromised machines, according to Darren Beilby, incident response expert for Security-Assessment.com.
Many of the security techniques used for detecting a compromised machine two years ago no longer apply, he said.
"A couple of months ago we were at a site where it was obvious to us that a rootkit was installed on a few Unix machines and we took forensic copies of the machines which proved they were first compromised nine months before," Beilby said.
Without a solid grounding in IT security and specialist expertise, Dr Craig Valli, senior lecturer in computer and network security at Edith Cowan University, WA, said most IT organizations will not cope with today's threats.
"The fact is IT managers should have a grounding in theory to see where the vulnerabilities are and then call on the techie guys," Valli said.
"Rootkits, spyware and some 'bot' technology is well ahead of the game and getting more sophisticated in ways of bringing a network down."
Professor Bill Hutchinson, IBM chair of Computer and Information Security at Edith Cowan University, said he sees very few IT managers attending short courses, mainly because most organizations are focused on keeping the lights on.
"Some specialized security courses are $5000 a day and are just a long lunch," Hutchinson said.
"IT managers are saying they have not got the time for training or education. An accountant would not say they have not had the time to learn changes in corporate law."
Ron Gascoigne, IT manager for Holmesglen TAFE, said appropriate security courses are hard to design because of the changing nature of what is in fashion at any point in time.
Gascoigne said most IT managers study a specific security niche privately that relates directly to the equipment their employer uses.
Naveen Sharma, associate director of Information Technology for Griffith University said the level of specialization required means a lot of organizations are appointing dedicated IT security managers.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Solve Exchange Mailbox Storage Issues Once and for All
CRM your salespeople will love
Controlling storage costs with Oracle database 11g
How to improve employee productivity in small and medium businesses
Refresh your AUP: Top tips to ensure your acceptable use policy is fit for purpose
Strategies for Eliminating .PST Files
Making the Business Case for IT Consolidation
Email Archiving 101—Customer Case Study
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Informatica Powercenter added to Nec Infoframe Solution Suite 2008-12-03 11:36:00+11
Gerald Held joins Informatica’s Board of Directors 2008-12-03 09:50:00+11
Sterling Commerce Speeds Long-Distance Delivery of Large Files 2008-12-03 09:28:00+11
FrontRange Solutions launches HEAT Plus Mobile to reduce help desk costs and improve service management productivity 2008-12-02 15:15:00+11
AARNet Helps to Advance Indigenous Health 2008-12-02 12:44:00+11
The state of Middleware
Middleware delivers unprecedented visibility and control over your business by making timely information available to decision makers. Organisations are using Middleware to leverage their existing IT investments, while optimizing their IT and business operations, securing their infrastructure and driving compliance. Read on to discover how Middleware can help you increase your businesses profitability.
Buying Guides
Latest Products
Buying Guides
