Zack Whittaker reports:
Over the past year we’ve seen Uber’s former chief security officer convicted in federal court for mishandling a data breach, a federal regulator charge SolarWinds’ security chief with allegedly misleading investors prior to its own cyberattack and new regulations that compel companies to publicly reveal materially impactful data breaches within four business days.
It might seem like it’s never been a riskier time to work in cybersecurity.
But a takeaway from one panel at the ShmooCon hacker conference in Washington, DC on Sunday is for those in cybersecurity not to walk away from the challenges.
Now in its penultimate year, ShmooCon brings together hackers, researchers, government officials and cybersecurity executives to discuss some of the most pressing issues facing the security community. A common theme heard among attendees this year is the increasingly risky nature of working in the cybersecurity industry itself. The infosec community is no stranger to legal risks — perhaps an inherent byproduct of working in the field — but is becoming more aware of the mounting legal oversight and consequences that go with the work.
Read more at TechCrunch.