Five Mistakes Security Pros Would Make Again

Nobody’s perfect — not even IT security professionals. But sometimes, even though a security pro has made a mistake, it actually improved security in the long run. Now, a new article is showing how many would make the same mistakes again.

In the article on the IT world website, Bill Brenner outlines five of those “mistakes” that turned out to actually improve a company’s security. They are the “best mistakes, if you will, that ultimately paid off either personally or professionally,” Brenner says.

Among those mistakes:

• When a network administrator fought his bosses to block employees from downloading pornography, he was fired. He, however, knew he did the right thing and says he would do it again.
• A director of information security who first botched a Sarbanes-Oxley (SOX) compliance initiative. By failing the first time, the company focused more time and effort into the initiative, and ended up with a lean and effective set of SOX controls.
• A CSO who suffered a firewall crash and had to rebuild a rule base from scratch, which then improved the company’s backup procedures.
• A security officer who kidnapped the wrong person during a counter-terrorism operation, only to discover the “victim” was so impressed with their kidnapping skills that it helped improve their training.
• A senior security specialist who stuck to his guns and told management the truth about business continuity, helping improve risk management for many organizations.

To read the full article, click here: http://www.itworld.com/security/55691/five-mistakes-security-pros-would-make-again.