Logging Expertise
Expertise in setting up robust logging infrastructure is a big skills gap in the security profession, explained Chris Stouff, head of threat resistance with Armor, a managed cloud security provider. "Logging of security events and ensuring the proper data enrichment is added, underpins everything that happens in security operations to detect, correlate and respond to threat activity," Stouff said. "Unfortunately, there are very few professionals in the market who really understand how to manage logs correctly and at scale. But even fewer have the skills or systems in place to properly audit and review the data that is present in their logs. Getting this right makes the difference between security as a check in the box, and actually putting forth an effort to stem the tide of attacks."
7 Top Skills for Security Pros
Just as the security landscape is ever changing, so are the skills that security professionals need to keep up. In a study conducted by Sungard Availability Services, IT decision makers revealed the security skills that are lacking in many organizations, including:
• Experience developing security infrastructure and setting up security policy management, monitoring and alerting systems
• Ability to identify incoming security threats
• Background in security systems including the network layer, system layer and application layer
• Familiarity with implementing security controls around enterprise data and experience with enterprise security, identity management and federation systems
Sungard AS’ Global CSO Shawn Burke added, "While it depends on the organization the security resource will work for, people with application/software development skills are in high demand throughout the industry."
Here are seven other security skills needed in IT departments, some of which may surprise you.
