The ISACA event was a lot of fun for me. I talked to some previous ITACS graduates that have found positions in IT auditing or cyber security immediately after graduating here. I spoke with Fraser who recently started working in a SOC. Then I talked to Michael from GeoBlue, a health insurance company for people on business travel or exchange students. Michael mentioned that his company does yearly audits and that every year the quality of the audit differs, even though they use the same company. He says that due to the “gut feeling” nature of penetration tests and audits, different holes are found. Sometimes one auditor is also more or less thorough. I found this interesting as it indicates a niche in the market for penetration testing, that is to structure the testing so that it does not depend on the tester.
Leave a Reply
You must be logged in to post a comment.