Skip to main content

Episode #35 - The root of all information security industry problems

Here's a question for you:

What is at the root of all information security industry problems?

Oh shit! Talk about an ambiguous question. Yes, but who said ambiguous questions are bad?

Alright, let's break this down then.

First, the question assumes there are "problems". Are there? We think so, but...

  • ~942,000 people in the U.S. are gainfully employed in this industry, and most of us are getting paid pretty well. Good paying jobs doesn't seem like a problem to me.
  • Worldwide, the cybersecurity market is valued at $173B. Seems the people selling shit are doing alright, no problem here.
  • Global "cybercrime" losses for 2020 were estimated to be $945B. The crooks DEFINITELY aren't experiencing any problems either!

So, where are the problems then?

Simple, look for the people who suffer, the victims. 

They're the ones who get the short end of the stick. They feel the brunt (or symptoms) of the problems. They lose money, they lose businesses, they lose income, they lose peace of mind, they lose time, they lose productivity, they lose their privacy, they lose their innocence (especially kids), and they lose life.

So, yeah. There are problems! 

One group clearly takes advantage of the other. We'll call them "Profiteers" and "Victims". There's one more group. There's a group of us who are trying to protect Victims from the Profiteers. We stand in the void.

  • Profiteers: Cybersecurity practitioners who don't serve (potential) victims, companies hocking products that don't serve the (potential) victims, and the crooks who steal outright.
  • Us: Practitioners who stand in between, serving (potential) victims.
  • Victims: Governments, companies, non-profits, schools, everyday people (grandparents, parents, kids, etc.) 

OK, so we've got problems. The masses become victims and feel the result(s) of the problems, the symptoms. Oh shit! The rabbit hole goes deeper.

We'll stop here, before things get too out of hand. 

We need to save some shit for the Shit Show. Chris, Ryan, and I will take it from here. Maybe we'll get far enough down the rabbit hole, and deep enough into the shit to find some semblance of the "root of all information security industry problems".

Regardless of how far we make it, it should be entertaining! 

Join the Security Shit Show LIVE, Thursday @ 10pm/2200 CST.


Popular posts from this blog

Episode One is On!

We're ready to roll! The first episode of the Security Shit Show is scheduled for this Thursday at 10pm CDT. It's sure to be good entertainment watching three information security "experts" shootin' the shit about some information security topic that's bound to get one (or all) of us riled up. We're live streaming our episodes on YouTube, so if you're looking for some Thursday night entertainment, grab a drink and listen in. The YouTube live stream show link is here; The recordings, both video and audio will be posted shortly after the live show, so look out for those too.

Killer Robots? Oh Shit.

If you missed last week’s episode, the Security Shit Show crew tackled the difficult discussion about morals and ethics. There are two ways to treat you ears and/or eyes (not likely) to Episode #5, "Moral and Ethical Shit in a Shitty World" : YouTube (video) Podcast (audio) It was an really good episode. A little bit of shit-slinging, but mostly just great discussion and opinion. If you like our shit, you should subscribe to our shit. Subscribe on YouTube or whatever your favorite podcast thingy is. Rumor has it, the shit will only get better and better! Episode #5 - Killer Robots? Oh Shit. Alright, we’re ready for the next episode of the Security Shit Show! Shout out to a helpful (and maybe even loyal) viewer Robert Hodges for calling our attention to a neat article titled “ Should 'Killer Robots' Be Banned? ”. Do killer robots sound like a good idea to you? Think about it... Certainly, Chris, Evan, and Ryan will have a few things to say about the topic.

What's the Security Shit Show?

If you don't want your life to stink, quit standing in shit. The Security Shit Show is a podcast that three friends put together; Ryan Cloutier, Chris Roberts, and Evan Francen. We're information security veterans (some call us "experts") with more than 70 years of combined experience who have a lot of shit to get off our chest. The information security industry isn't all hunky-dory; we're doing a lot of things wrong and people are suffering because of it. You can be the "fly on the wall" or you can interact with us. Ultimately, this is your call. Here's the lowdown for our show... Name The Security Shit Show You can take this name two ways; either we're calling security a shit show, or we're discussing security shit on the show. The answer is "yes". Purpose Provide people with the real shit going down in our industry, and always discuss ideas about what people can do to make things better. This is not a