Mick Douglas is a computer security expert with more than 20 years of experience. He has taught information security at SANS Institute since 2002, and is currently a principal instructor there. Mick is also the author of “The Hacker’s Playbook 2: Practical Guide to Penetration Testing”. In his work, Mick focuses on following a methodical and repeatable process when conducting penetration tests to avoid missing anything important in his work.
Mick Douglas has worked with some of the world’s largest companies, helping to secure their networks and systems. He is highly respected within the information security community, and is known for his dedication to teaching others about best practices in security.
Today Mick Douglas is speaking with PureVPN today about cybersecurity issues, training programs, and much more.
Question No 1: Given the extremely worrying developments on the world stage recently, do organizations and state institutions need to rethink their information security SOPs?
Mick: Yes, but rethinking and adjusting SOPs should be a routine thing. If you do not constantly adjust your SOPs, they become too static and soon be treated like they’re some sacred text. They’re not. They should be viewed as little more than guides that provide a framework for responding in a consistent manner.
Question No 2: What is the most persistent issue you’ve come across regarding cybersecurity measures? Is it the lack of qualified manpower, sophisticated tools, or tech infrastructure?
Mick: So far, every issue I’ve seen comes down to lack of people in the field. Forget “qualified”, I just mean raw numbers of people. I believe, there’s over three million job openings for computer security positions now. As a result, we have networks that need lots of care and attention. Typically, most who are in the field are massively overworked.
Question No 3: In your opinion, what are the key issues that enterprises should emphasize on, in their cybersecurity training programs?
Mick: As an instructor for SANS, I see lots of issues first hand. I think the main issue is that many organizations don’t properly invest in training. It shows in lots of ways… It’s not just that they’re not sending staff to training… sometimes they’re sending them under equipped (laptop requirements and prerequisite skills/knowledge), or perhaps worst of all… interrupting them during a day of training with issues. Unlike other areas of business, IT skills get dated quickly. This is doubly so for computer security. If you’re not getting focused training as part of an overall personalized career development plan, you should consider looking for an organization that will give you this sort of support.
Question No 4: Have no-click malware threats, like the NSO Group’s Pegasus, changed data security policies? If so, how?
Mick: For some organizations it has! I’ve seen organizations end BYOD (bring your own device) entirely, which I think is, maybe, a good thing. BYOD is one of the most expensive cost saving ideas ever. Other organizations aren’t too worried about this type of attack for various reasons. Sadly, most organizations… if you take a broad view globally here… they’re just not aware. So the sad answer is, most haven’t even heard of this issue so they’ve not adjusted at all.
Question No 5: Given the rising incidents of identity theft, do you think that an always-online generation is better equipped to discern phishing and social engineering attacks?
Mick: No. Everyone is vulnerable to phishing/social engineering. EVERYONE. I’m including myself and I teach these things, and even provide these services to my clients. As long as the attacker has done appropriate homework and crafted a viable ruse, you will get victims. Computer and security literacy helps, but it’s not enough.
Question No 6: Is it enough for organizations to invest in secure antivirus and VPN solutions? What else can be done to bolster organizational IT infrastructure?
Mick: It depends on the organization. For some, AV (antivirus) and VPN (virtual private network) will be enough. For most that still allows significant exposure. It’s good to prevent attacks where you can, but it’s far better to detect as well. Across all market verticals, we as an industry need to make it easier for organizations to better understand what’s happening inside their networks.
Question No 7: Even info security specialists need some downtime! What do you do to unwind?
Mick: I love anything outside! Especially anything that gets me completely off the grid. My wife and I love hiking and photography, but we’re getting quite serious about sailing. Soon, we’ll be doing a weeklong study aboard a boat and hopefully pass the first of several licensing tests. Ultimately, I’d like to become a captain. I think “Cap’n Mick” has a nice ring to it! LOL!!
We admire your effort Mick for the interview. Our readers will benefit from your knowledge and insights. As for our readers, you can follow Mick Douglas, on Twitter @bettersafetynet.
PureVPN
June 20, 2023
11 months ago
