Information Security                               Professional                                              UIN - 16 Nov ...
y3dips               • Freelance IT Security Consultant               • More than 9 years in IT Security               • F...
InfoSec                                Means protecting information and                             information systems fr...
Information Security                • Information : Set or collection of data that has meaning                •        Lev...
InfoSec Pro                             People Working in Information securityWednesday, November 16, 11
InfoSec Pro                      Background               • Natural Born Hacker               • Formal EducationWednesday,...
Hackers                             Natural Born Hacker, Gain their InfoSec                             Knowledge by Hacki...
Hacker                • Newbie                • Script Kiddie                • Develop Kiddie                • Hacker     ...
Newbie                             A wanna be hackerWednesday, November 16, 11
Script Kiddies                             Know the Tools, Able to use the tools;                             But, Not how...
Develop Kiddies                                  Able to Create a Tools,                             Know how the tool “re...
Hacker                             Know Exactly What they’re Doin and                                       How to Do itWe...
1337                             Nobody Know what They are DoingWednesday, November 16, 11
Hacker                      [+]               • Proven Skill and Exprerience               • Able to do a proof of concept...
!Professional                   • Bug Hunter                   • OS/App Developer                   • Botnet owner (DDOSer...
Wednesday, November 16, 11
Wednesday, November 16, 11
InfoSec Student                             Gain Information Security Knowledge from formal                             Ed...
InfoSec Student                      [+]               • Strong in Concept and Metodhologies                      [-]     ...
InfoSec Pro                   • IT Security Officer                   • IT Security Analyst                   • IT Security...
Security Officer                   • Security Contact Point for Organization                   • Principle Advisor for IT S...
Security Analyst                   • Monitor all type of access to protect                             confidentiality and ...
Security Auditor                   • Auditing an Organizations Technology                             processess and secur...
Security Engineer                   • Maintenance Computer Hardware and                             Software that comprise...
Requirements                   • Skill                   • Experience                   • Attitude                   • Abl...
Skill                   • In depth knowledge of Operating System                   • In depth knowledge of Networking     ...
Experience                   • How long you’ve been in that field                   • + the Security afterward.Wednesday, N...
Attitude                             With Great Power Comes Great                                    ResponsibilitiesWedne...
Work                   • Able to work Alone (individualist),                   • or a Team PlayerWednesday, November 16, 11
Certification                   • In someway, its a [+]                   • Is it badly needed?Wednesday, November 16, 11
Limitation                   • Government Rule : UU ITE                   • Organization/company Rule: NDAWednesday, Novem...
Failed                   • Always Take not Give                   • Lack of Attitude                   • Kiddies Minded   ...
Wednesday, November 16, 11
Information Security                               Professional                                              UIN - 16 Nov ...
Upcoming SlideShare
Loading in...5
×

Information Security Professional

1,815

Published on

ITSec Pro - UIN JAKARTA IT Security Seminar

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,815
On Slideshare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
79
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Information Security Professional

  1. 1. Information Security Professional UIN - 16 Nov 2011 - @y3dipsWednesday, November 16, 11
  2. 2. y3dips • Freelance IT Security Consultant • More than 9 years in IT Security • Founder of “ECHO” one of Indonesian Hacker Community, established 2003 • Founder of IDSECCONF - Indonesia Security Conference @y3dipsWednesday, November 16, 11
  3. 3. InfoSec Means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction [1] [1]  h&p://wikipedia.orgWednesday, November 16, 11
  4. 4. Information Security • Information : Set or collection of data that has meaning • Level [2] • Non-Classified • Public Information • Personal Information • Routine Business Information • Classified • Confidential • Secret • Top Secret [2]  h&p://wikipedia.orgWednesday, November 16, 11
  5. 5. InfoSec Pro People Working in Information securityWednesday, November 16, 11
  6. 6. InfoSec Pro Background • Natural Born Hacker • Formal EducationWednesday, November 16, 11
  7. 7. Hackers Natural Born Hacker, Gain their InfoSec Knowledge by Hacking; Hack to Learn notWednesday, November 16, 11
  8. 8. Hacker • Newbie • Script Kiddie • Develop Kiddie • Hacker • 1337Wednesday, November 16, 11
  9. 9. Newbie A wanna be hackerWednesday, November 16, 11
  10. 10. Script Kiddies Know the Tools, Able to use the tools; But, Not how the tool “really” worksWednesday, November 16, 11
  11. 11. Develop Kiddies Able to Create a Tools, Know how the tool “really” works But Still lack with attitudeWednesday, November 16, 11
  12. 12. Hacker Know Exactly What they’re Doin and How to Do itWednesday, November 16, 11
  13. 13. 1337 Nobody Know what They are DoingWednesday, November 16, 11
  14. 14. Hacker [+] • Proven Skill and Exprerience • Able to do a proof of concept [-] • Lack of Metodhologies • Lack or Organizations/ManagerialWednesday, November 16, 11
  15. 15. !Professional • Bug Hunter • OS/App Developer • Botnet owner (DDOSer) • FraudsterWednesday, November 16, 11
  16. 16. Wednesday, November 16, 11
  17. 17. Wednesday, November 16, 11
  18. 18. InfoSec Student Gain Information Security Knowledge from formal Education, Course, CertificationWednesday, November 16, 11
  19. 19. InfoSec Student [+] • Strong in Concept and Metodhologies [-] • Lack of Skill and Experience • Unable to do Proof Of conceptWednesday, November 16, 11
  20. 20. InfoSec Pro • IT Security Officer • IT Security Analyst • IT Security Auditor • IT Security EngineerWednesday, November 16, 11
  21. 21. Security Officer • Security Contact Point for Organization • Principle Advisor for IT Security • Ensure Security Program Running ( Security Awareness course, etc) • Creating Security Policy, Procedures, Hardening guideWednesday, November 16, 11
  22. 22. Security Analyst • Monitor all type of access to protect confidentiality and integrity • Provides Direct Support and Advise to the IT Security Manager • System Security Analyst, Network Security AnalystWednesday, November 16, 11
  23. 23. Security Auditor • Auditing an Organizations Technology processess and security. • IT General Controls Reviews • Application Controls Reviews • Security Auditor, Penetration TesterWednesday, November 16, 11
  24. 24. Security Engineer • Maintenance Computer Hardware and Software that comprises a computer Network • Doing a Security hardening and Configuration • System Security Engineer, Network Security EngineerWednesday, November 16, 11
  25. 25. Requirements • Skill • Experience • Attitude • Able to work independent/group • Certification?Wednesday, November 16, 11
  26. 26. Skill • In depth knowledge of Operating System • In depth knowledge of Networking • In depth knowledge of Application • In defpth knowledge of Programming • Much more :)Wednesday, November 16, 11
  27. 27. Experience • How long you’ve been in that field • + the Security afterward.Wednesday, November 16, 11
  28. 28. Attitude With Great Power Comes Great ResponsibilitiesWednesday, November 16, 11
  29. 29. Work • Able to work Alone (individualist), • or a Team PlayerWednesday, November 16, 11
  30. 30. Certification • In someway, its a [+] • Is it badly needed?Wednesday, November 16, 11
  31. 31. Limitation • Government Rule : UU ITE • Organization/company Rule: NDAWednesday, November 16, 11
  32. 32. Failed • Always Take not Give • Lack of Attitude • Kiddies Minded • Lazy to ImproveWednesday, November 16, 11
  33. 33. Wednesday, November 16, 11
  34. 34. Information Security Professional UIN - 16 Nov 2011 - @y3dipsWednesday, November 16, 11
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×