Don't Care to Write a Title

Oh look, another blog about cyber security. Yay. I'm pretty sure we've spent 80% of the fall semester talking about it, and if we haven't, it sure feels like we have. Let's just say I probably won't take the time to focus on cyber security as a career choice in the future, so I refuse to take the subject too seriously.

So, what protections would I put in place?

Ha, you're funny. You think I was paying attention to all the cybersecurity mumbo jumbo we discussed! Next question:

How would I store my da- nope, not feeling this one. Next.

Let's skip to: how would I train my employees to spot malicious behavior?

So...you think I'd hire people who had no idea how to spot malicious behavior? That's your first mistake! I'd make sure my employees had some experience. It's cybersecurity. Error is one of those things you can't really accept with this job, though if this multinational corporation was dumb enough to hire me I guess I can't complain too much. Ugh, fine, I'll actually answer this one I guess. So if you ever have inexperienced people, it's best to train them by first giving them a programming test to see what they know. If they don't understand algorithms and overall can't program efficiently, I don't want their service. Next, I would divide my team into sections to search for different things. One group would look for malware, one for viruses, another for social engineering, etc. I believe being well-rounded is good, but I'd much rather give my employees a specific focus so things actually get done.

How would I protect against social engineering and other means of attack?

This may sound paranoid, but I'd make a point to have each call traced and recorded so that no one can get away with information. I will also tell my employees to mention NOTHING about the OS or the company in general. If the caller keeps trying to get this information, it will be a rule to hang up on them. Whether this will work, I dunno, but I'm pretty sure if social engineering was a huge concern and your employees are too trusting, it's best to let them go.

If someone attacked you, would you retaliate? Is it ethical, blah blah blah?

Yes. That would be my first thing to do. In life, you don't let people treat you or your things however they want. Yes, it's completely ethical. Don't ask me about ethics; cybersecurity and hacking arern't the most glamorous of computer science positions.

Hm...I'm debating on writing more. Nah, this will do. Probably my last blog I'll ever write, too. Have fun grading this!