和谐英语

您现在的位置是:首页 > 英语阅读 > 英语阅读|英语阅读理解

正文

网络不断发展 安全人才走俏

2011-08-01来源:财富中文网


The skills you need

“合法黑客”必杀技

    Whether you have a prior IT background or are only just entering the work force, ways to get into cyber security are diversifying alongside its skillsets. Six or seven years ago, Geopfert says, the field was dominated by people with "hardcore security experience" in defense, law enforcement, or a major IT department that handled some of its own security.

    不管你是拥有深厚IT背景的老枪,还是初入江湖的菜鸟,进入网络安全这一行的途径多种多样,每条道路需要的技能组合也各不相同。吉奥普佛特称,六七年前的时候,这个领域主要是被那些拥有“货真价实的网络安全性经验”的人所把持。他们要么在防网络攻击或法律执行方面拥有坚实的经验,要么就是在能够自行处理某些网络安全问题的大型IT部门里干过。

    But now, companies aren't simply looking for veterans with long-term experience. Certifications demonstrate you're serious about the job, but they don't cut it on their own. Differentiate yourself through additional areas of focus, such as a management knowledge, risk assessment, or even psychology to join expanding teams that use interdisciplinary approaches to spot the warning signs of an attack before it happens.

   但是现在,企业已经不单单把眼光投向那些拥有长期经验的老手。证书只能表明你很严肃地看待这份工作,但仅凭证书却并不能为你赢得这份工作。你必须要对格外关注某些其它领域,比如可以额外学习一门管理知识,或者学习风险评估甚至心理学,才能脱颖而出,成功入选。因为现在许多网络安全性团队都在采用交叉学科的分析方式,以便在网络袭击发动之前发现危险信号。

    While technical credentials can get you in the door, you'll get nailed if you can't handle the work. Geopfert stresses that the industry has learned how to weed out unqualified opportunists. "You're going to have to sit down with somebody like me that will ask you to talk me through processes in 30 seconds," he says. "Go get the certs, but highlight your depth of knowledge in specific areas -- recruiters will appreciate it."

    技术证书好比敲门砖,它可以把你领进门,但如果活干得不好的话,还是一样会被扫地出门。吉奥普佛特强调,现在业界已经学会了如何清退滥竽充数的机会主义份子。“你可能必须得和某个像我这样的人面对面坐下来,我会给你一个任务,要你在30秒钟的时间内说服我录用你。”他说:“考证当然是必要的,但是只有突出某个特定领域的知识深度,才能赢得招聘者的青睐。”

    A strong academic background always helps: AT&T (T) has recently hired a dozen PhDs right out of their dissertations, according to chief of security Edward Amoroso. But Amoroso and other recruiters say they also look for computer scientists with a hacker's mentality. Even if you just have natural aptitude in lieu of an advanced degree, Geopfert says the key is to participate in industry chats and conferences where you can demonstrate maturity and show recruiters you can maintain a conversation. Being able to code in your sleep won't help if people can't stand to work with you.

   扎实的学术背景也会增加你获得工作的机率:美国电话电报公司(AT&T)的安全总监爱德华.阿莫罗索表示,该公司最近招聘了10多名博士生,他们都是刚搞定毕业论文就被公司录取了。不过阿莫罗索和其他招聘者也表示,他们也在寻找拥有黑客心态的电脑科学家。吉奥普佛特指出,如果你恰好在计算机方面极有才华,但是却没有高学历,那么获得工作的关键就是参与行业的演讨会和会议,利用这些场合来展示你的成熟,告诉招聘者你是可以沟通的。如果人们无法忍受与你共事的话,哪怕你在睡梦里都能编程也无济于事。

    Not particularly technical? There are an increasing number of "hybrid" jobs if you're all thumbs on a keyboard. The auditing side of cyber security needs candidates who might not be able to write security programs but can understand how to regulate activity.

    没有特殊的技术怎么办?不要着急,如果不擅长干键盘上的工作,这个行业里还有越来越多的“混合工种”等着人做。比如网络安全的审计方面需要的人手可能不必懂编程,但却要知道如何进行规范管理。

    With salaries from $50,000 to $120,000 dollars a year and companies such as AT&T, Wells Fargo (WFC), Citigroup, Microsoft (MSFT), and Boeing (BA) on the lookout for staff, cyber security is a growing industry -- even if you're a former hacker who wants to play it straight.

    美国电话电报公司、富国银行(Wells Fargo)、花旗集团、微软(Microsoft)和波音(Boeing)这样的大企业在招聘时给网络安全人员开出的年薪大概都在5万到12万美元之间。网络安全是一个正在兴起的行业——哪怕你以前是个黑客,现在想弃恶从善也犹未为晚。