Security Architecture - Legal Issues and Global Regulation

Legal Issues and Global Regulation

One of the main challenges to and main complaints about the antivirus industry is the lack of global web regulations, a global base of common rules to judge, and eventually punish, cyber crimes and cyber criminals. In fact, nowadays, even if an antivirus firm locates the cyber criminal behind the creation of a particular virus or piece of malware or again one form of cyber attack, often the local authorities cannot take action due to lack of laws under which to prosecute. This is mainly caused by the fact that mostly every country has an own regulation about cyber crimes.

" switch from one country to another, from one jurisdiction to another — moving around the world, using the fact that we don't have the capability to globally police operations like this. So the Internet is as if someone given free plane tickets to all the online criminals of the world." (Mikko Hyppönen)

Due to some of the European's antivirus firms (e.g. Avira, BullGuard, F-Secure, Frisk, Panda, TG Soft, ...) to solve this problem, the European Commission has decided to establish the European Cybercrime Centre(EC3). The EC3 effectively opened on 1 January 2013 and will be the focal point in the EU's fight against cyber crime, contributing to faster reaction to online crimes. It will support member states and the EU's institutions in building an operational and analytical capacity for investigations, as well as cooperation with international partners.

Cyber Security is a growing field. This field is one that many other people are not aware of and the jobs are increasing through out the years. Since our technology is getting better every year, the number of jobs are increasing and we need more people to do this job. Cyber security has to do with making sure that hackers and data breaches do not happen. These are things that could cause a serious threat to our government and it is important to keep files disclosed. These threats happen everyday, the most common is probably identity theft. Their are many cyber security student programs out there that can help you pursue a career.

Below are job titles and descriptions to give you an idea of the job roles.

• Security Analyst: analyzes and assesses vulnerabilities in the infrastructure (software, hardware, networks), investigates available tools and countermeasures to remedy the detected vulnerabilities, and recommends solutions and best practices. Analyzes and assesses damage to the data/infrastructure as a result of security incidents, examines available recovery tools and processes, and recommends solutions. Tests for compliance with security policies and procedures. May assist in the creation, implementation, and/or management of security solutions.
• Security Engineer: Performs security monitoring, security and data/logs analysis, and forensic analysis, to detect security incidents, and mounts incident response. Investigates and utilizes new technologies and processes to enhance security capabilities and implement improvements.
• Security Architect: Designs a security system or major components of a security system, and may head a security design team building a new security system.
• Security Administrator: Installs and manages organization-wide security systems. May also take on some of the tasks of a security analyst in smaller organizations.
• Chief Information Security Officer: a high-level management position responsible for the entire information security division/staff. The position may include hands-on technical work.
• Security Consultant/Specialist: Broad titles that encompass any one or all of the other roles/titles, tasked with protecting computers, networks, software, data, and/or information systems against viruses, worms, spyware, malware, intrusion detection, unauthorized access, denial-of-service attacks, and an ever increasing list of attacks by hackers acting as individuals or as part of organized crime or foreign governments.