Skip to content
Search

Latest Stories

NatSecEDGE

Welcome! Log in to stay connected and make the most of your experience.

Input clean

What Companies Need

There is a dearth of talent in the cybersecurity industry, and the talent that does exist tends to be very specific, with some skill sets being more rare than others. An IT guy with 15 years of experience in network engineering is not interchangeable with a skilled penetration tester (pentester), though these are both certainly needed skills for a cybersecurity program. For many companies, the lack of pentesters is a significant problem. And while there are a lot of pentesters working in the industry, there is still a shortage of exceptionally good ones.  What separates a mediocre pentester from a good or a great one, is not the number of tools or scripts memorized, nor how many certifications are listed on the resume.  No, it is by how cunning he or she is, and how shrewdly a pentester thinks. But even the really great pentesters still fall short in the expertise and mindset that a company needs when defending itself. 

What companies need is access to people with real world expertise, people who have a bit of a malicious mindset, and who have had the opportunity to perfect it – legally of course.  People whose skills and talent have been honed through extensive experience of planning and executing cyber attacks.  Essentially, these are people who have been advanced actors  working for the U.S. government against our nation’s adversaries.  In government parlance, these would be people with computer network operations (CNO) experience, computer network exploitation (CNE) experience, and operations officer (aka case officers).  The NSA and CIA are the premier proving grounds for this kind of experience, although there are a few other agencies that have a smaller portion of resources with similar experiences.

Keep reading...Show less
Access all of The Cipher Brief’s national security-focused expert insight by becoming a Cipher Brief Subscriber+ Member.
watch now

Related Articles

Rogg's History of Intelligence: Insightful, But Incomplete

BOOK REVIEW: The Spy and the State: The History of American IntelligenceBy Jeffrey P. Rogg / Oxford University PressReviewed by: Jason U. [...] More

Report for Wednesday, May 28, 2025

8:21 America/New_York Wednesday, May 28 [...] More

Airborne, All The Way

BOOK REVIEW: NOTHING BUT COURAGE The 82nd Airborne’s Daring D-Day Mission and Their Heroic Charge Across the La Fiere BridgeBy: James Donovan / [...] More
As U.S. Commitment Wanes, Europe Faces  Questions About its Own Defense

As U.S. Commitment Wanes, Europe Faces Questions About its Own Defense

EXPERT INTERVIEW – In the early weeks of the second Trump administration, questions were raised about Ukraine’s ability to defend itself, as the [...] More

Ukraine is a Crucible of Innovation, Not a Perfect Blueprint

EXPERT PERSPECTIVE – Ukrainian technology expositions are abuzz with enterprise and excitement. I have watched unmanned systems glide through [...] More
A Short Diary from Ukraine’s War: One American’s Story from Kyiv

A Short Diary from Ukraine’s War: One American’s Story from Kyiv

EXPERT PERSPECTIVE — I arrived to Kyiv in January 2025, at a time when the war with Russia was almost three years old. My purpose was professional [...] More

A U.S. President Pursuing Peace

OPINION — It’s gratifying seeing President Donald Trump personally pursuing peace and reconciliation in a world ravaged by war and conflict. His [...] More

Open Source Report for Friday, May 23, 2025

Friday, May 23, 2025. 7:30 AM EST The Cipher Brief curates open source information from around the world that impacts national security. Here’s a [...] More