will.brien + sysadmin + management   4

A Glimpse and a Hook
The First Pass

Your Name. It’s simple. Do I know you? Whether I do or not, I’m going to immediately Google you to see if I should. Oh, you a have a weblog. Excellent.

Company Names. Do I recognize any companies that you worked at? If I do, I don’t look at what you actually do, I assume that if I recognize the company, I’m in the ballpark. If I don’t know the company, I scan for keywords in the description to get a rough idea. Hmmmmm… networking words. Ok, you’re a networking guy.

Job Description and History. Here I’m looking for history and trajectory. How many jobs have you had and for how long? How long have you been in your current role? Where’d you come from? QA? Or have you always been an engineer? This is when I start looking for inconsistencies and warning flags.

Other Interests and Extracurriculars. Yeah, this is part of the first pass. I’m eagerly looking to find something that makes you different from the last fifty resumes I looked at. More on this in a moment.

So, we’re done. It’s been ten to twenty seconds and I’ve already formed an opinion. There’s a good chance that I’ve already made a call whether to move forward on you. If there are other folks checking the resume out, I can certainly be convinced to take a second look, but a basic opinion has been formed.
work  certification  sysadmin  management  business  reference 
august 2011 by will.brien
The Six Dumbest Ideas in Computer Security
#5) Educating Users

"Penetrate and Patch" can be applied to human beings, as well as software, in the form of user education. On the surface of things, the idea of "Educating Users" seems less than dumb: education is always good. On the other hand, like "Penetrate and Patch" if it was going to work, it would have worked by now. There have been numerous interesting studies that indicate that a significant percentage of users will trade their password for a candy bar, and the Anna Kournikova worm showed us that nearly 1/2 of humanity will click on anything purporting to contain nude pictures of semi-famous females. If "Educating Users" is the strategy you plan to embark upon, you should expect to have to "patch" your users every week. That's dumb.

The real question to ask is not "can we educate our users to be better at security?" it is "why do we need to educate our users at all?" In a sense, this is another special case of "Default Permit" - why are users getting executable attachments at all? Why are users expecting to get E-mails from banks where they don't have accounts? Most of the problems that are addressable through user education are self-correcting over time. As a younger generation of workers moves into the workforce, they will come pre-installed with a healthy skepticism about phishing and social engineering.
business  humour  reference  security  sysadmin  management 
january 2011 by will.brien
Openfiler - Friendly enterprise storage management platform
Openfiler is a powerful, intuitive browser-based network storage software distribution. Openfiler delivers file-based Network Attached Storage and block-based Storage Area Networking in a single framework.
sysadmin  linux  backup  ldap  storage  distro  management  samba  nas 
january 2007 by will.brien
WinDirStat
WinDirStat is a disk usage statistics viewer and cleanup tool for Microsoft Windows (all current variants).
software  management  sysadmin  windows 
november 2005 by will.brien

Copy this bookmark:



description:


tags: