By Ron Woerner
In his recent ComputerWorld article (http://www.computerworld.com/blogs/node/4425?source=NLT_SIC&nlid=92), Michael Farnum spells out the need for IT folks to be â€œpeopleâ€ people. Being an asshole no longer works. (See Bob Suttonâ€™s blog.) Marcus Ranum and Bruce Schneier have been saying it for years that security is about the people and process not the technology.
They talk about the problem, but have no concrete solutions. The only way to fix this is that weâ€”the people who design, write, implement, and manage securityâ€”have to learn how to deal with people. We need to get out of our introvert shells and learn about people.
We are rectifying this situation as part of the next generation of security. At the RSA 2007 US Conference, I am leading a session titled â€œBecoming â€œPeopleâ€ People â€“ The Kinder, Gentler Security Professional.â€ This technical presentation will show the importance for understanding people: how they think; why they act the way they do and what motivates them. Attendees will learn fundamentals in areas such as psychology, sales & marketing, communications, and leadership to help them be â€œpeopleâ€ people. They will also receive a resources, tips, and tricks to take home to practice being â€œpeopleâ€ people. These ideas will force infosec professionals to think about this problem and see what they can do to solve it.
For those not attending the RSA Conference, I will provide a complete article describing this after the conference. Until then, hereâ€™s a little tidbit: Maxwellâ€™s 30-second rule. Within 30 seconds of seeing someone, say something nice about him/her. This gives him or her attention, affirmation, and appreciation. This simple encouragement will help you become a â€œpeopleâ€ person.
By helping each other, we all become stronger.