30 more

By Roger on March 17, 2008 6:41 PM | | Comments (1) | TrackBacks (0)

Over the weekend I received a benefits summary from work. They mail it out to remind people of all the non-salary related benefits that we get. The company doesn't pay as well as others, but the retirement benefits are the golden shackles.

They provide retirement projections assuming x,y, or z rate or return and a inflation rate of a. In addition it assumes that my contributions remain porportionally the same, that the retirement program doesn't change, and I get a 4% raise (cost of living adjustment) each year. Looks like I may be working until I'm 65.

Can you imagine working for 30 more years? Looking back at what has changed in the past ten. Looking at what will change in the next 30. Fortunately you dont have to listen to my cracked crystal ball (how do you listen to a crystal ball). Bruce Schneier had some interesting comments in the latest Information Security mag.

In a fit of optimism Bruce says that security will become a requirement of the products. It will be baked in, instead of an add-on solution. One thing that will drive this is SaaS. "IT is infrastructure. Infrastructure is always outsourced. And the details of how the infrastructure works are left to the companies that provide it."

As that happens Bruce sees a consolidation in the security industry. Bad new for us Infosec guys. We'll be replaced by an Indian call center. Just kidding. It doesn't sound good though Richard Bejtlich's blog entry on this subject predicts small companies will jettison their IT staff, and a lot of us may end up working for service providers. That sounds like a net loss of security jobs to me.

Will that happen? Have most companies outsourced their helpdesk? I dont think so. Many that have, found that external helpdesks didn't provide the same level of service. Have most companies outsourced log review? I dont think so. The external company doesn't have the same interest or personal responsibility. Infomation security policy and implementation is still extremely important.

Categories

General

0 TrackBacks

Listed below are links to blogs that reference this entry: 30 more.

TrackBack URL for this entry: http://www.infosecblog.org/mt-tb20071121.pl/701

1 Comments

Michael Huntley said:

Roger -

The problem you are seeing is called "Fracturing" - businesses farming out core services, who eventually in turn farm out their core services.

Job security is a thing of the past, but IT security jobs, particularly in the future, look better than you think.

Yeah, small companies are going to say good bye to their IT staff. In most cases they will bring in consultants, like me, who handle things remotely, with a two or three day visit per week.

It's good on both sides. A great business expense for the company, and as a consultant you have your own write-offs.

You work fewer hours for greater pay, you can have fewer clients, yet spread across the business spectrum for income protection, and save for a great retirement.

As for your retirement, save 24%, diversify, diversify, diversify. Oh, and tax-free income.

Cheers!

April 25, 2008 4:03 PM

Leave a comment

Powered by Ajax Comments

About this Entry

This page contains a single entry by Roger published on March 17, 2008 6:41 PM.

Looking at the online black market was the previous entry in this blog.

Calendar Invite Spam is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search