E-PULSE
Information security: Future calling
Shweta Pathak

Want to become a millionaire in 15 minutes flat?

The pop-up hits your screen the moment you connect your computer to the Internet. The lure of mammon entices you; you click on the link and furnish the required information -- your email ID, possibly a password and several other details -- without realising that your office is now a sitting duck for the ubiquitous hacker.

But the hacker has finally found his match in an information security professional, who ensures a foolproof security environment for your network. Given that hundreds of viruses creep into cyberspace daily and thousands of hackers are on the prowl, an information security professional becomes the last line of defence between the Net user and the inquisitive predator.

The high incidence of hacking has rendered information security (IS) the topmost technology concern of companies across the globe. According to an estimate, 58 per cent of Indian organisations rate information and network security as their topmost concern.

This clearly demonstrates the latent demand potential in the job market for network and security professionals. Even market surveys indicate that networking is one area which is likely to witness a serious shortfall of skilled hands in the future.

Says Akshaye Chatterji, an independent Information Security Consultant: "Threats to network have indubitably increased the demand for professionals who can provide foolproof security. Network security specialisation is not only a well-paid job, it is also a lucrative way of staying self-employed.''

A professional in this field can work as:

• A network programmer, who designs and develops programmes to provide network security.

• A network analyst, who is involved in studying exchange of data packets on network.

• A network strategist, who chalks out the strategy, builds the infrastructure and designs the security system in an organisation.

• A consultant engaged in providing expert advice on the security system, the kind of security tools that should be deployed etc.

• A data recovery specialist, who has expertise in retrieving the data that is lost.

According to an industry surveys, the worldwide demand for information security services, which was estimated at around $8 billion in 2001, is likely to grow to $23.6 billion by 2006. Organisations like Nasscom indicate that the demand for IS professionals will increase from 18,000 in India and 60,000 worldwide to 77,000 in India and 1,88,000 worldwide by 2008. At this rate, a shortfall of 1,00,000 professionals is estimated globally within the next four years.

"Not only does this field have a tremendous job potential, one can expect an equally good pay packet as well," says Ravinder Goyal, Director, IACM, an institute that has recently launched courses in Network and Security Management.

Elaborating, he says that a network security professional has pretty good chances of securing a highly paid job abroad as well. "While the initial salary could be around Rs 10,000 a month in India, security systems professionals abroad can easily manage annually between US $75,000 and $ 1,50,000. In fact, one stands a good chance of getting a job abroad after working for a year or two in India," he adds.

But how does one become a successful network security system specialist?

According to experts, apart from good programming skills, a network security professional also needs to have a sound knowledge of hardware. Broadly speaking, the requirements are:

• Good programming skills

• Knowledge of computer hardware

• Specialisation in any of the languages such as C, C++, Visual Basic, Assembly Languages etc.

• In-depth knowledge of security tools available and being offered by several developers

• Ability to develop one's own security tools like firewalls; managing proxy servers

• Ability to manage Trojan horses and develop anti-virus vaccines

• Knowledge of managing destructive programmes like Hard Disk Killer

• Knowledge of data recovery

• Good analytical and innovative skills

Says Anil Sharma, an Information Technology consultant: "To be a cop, one has to know how the criminal's mind functions. Similarly, to be a network security specialist, one has to know how security is breached and how systems are hacked. The job not only involves ability to devise programmes but a sound understanding of human psychology. One has to be update on the latest technologies available in the market and the strategies being adopted by hackers to counter them."

While students of BE study security systems as part of their curriculum, market experts recommend an advanced course.

"Not many institutes today are offering dedicated courses in security systems. Moreover, one has to be particular about the certification of such courses," says Goyal.

The professional courses on offer are in fields like Enterprise Network and Security Management, which could build one's skills in managing desktop environment, deploying, installing and configuring network operating systems, hardware devices and drivers, networking technologies and protocols. Besides, such a course should equip one with adequate skills to troubleshoot, repair and manage the hardware and local area networks. One can also go in for specialised courses in designing and implementing network infrastructure, using certain operating systems like Linux, Windows 2003 server etc. You can also go in for specialised networking courses like the one in Cisco routers and Switches.

"The job of a network security specialist requires a knowledge of related fields as well. One cannot restrict oneself to a particular field," Chatterjee adds.

So, if you are a tech-savvy go-getter with an innovative and analytical mind, internet security solutions is your cup of tea.