It is well known that humans are the weakest link in the information security chain, but specifically, who are them? Well, you may guess, “they” are everyone. I have been in both sides, as a user and as a system admin; and in both sceneries humans tend to make mistakes. It’s human nature.
Some time ago, I had the opportunity to write an article titled “To be a certified professional or not to be”. It was about why some companies place more weight on certification’s credentials, than on years of experience and college degrees. I briefly explained that it was because some certifications are a must-have, since they “prove” that you are “following” the best practices, industry standards, and keep yourself up-to-date with new technologies and methodologies. This is true, but there are some other credentials that are just as nice to have, just to say that you have it (merely decorative). As the saying goes: “The suit does not make the clergyman, but distinguishes him”
Dr. Gilberto Crespo is an information security researcher & technology expert.