How to help new team member with security best practices without escalation to management
I currently work on the Information Security team at my employer, and have been working at my company for about 4 years. Recently a new member joined the team, who per his resume has about 1.5 years of experience in cybersecurity. He has never worked in a SOC before.
I was instructed by my manager to mentor / train this person, but will not be his direct manager going forwards. He is generally smart, but has some sloppy work habits that don't really follow best practices. We work with highly sensitive customer credit card , financial, and health data so proper security is essential. Our industry (insurance and healthcare) is tightly regulated.
Some of his actions are "loose" and somewhat "sloppy" such as lapses in communication before making a change to production security components (e.g: firewall, DLP software, IPS, and SIEM etc.), using domain admin credential for system administration tasks that don't require that high level of access, and not logging actions properly in audit logs. While he appears to know what he is doing, I am afraid that such actions may mean he may one day make a critical error in PROD that he may not be able to recover from and I may or may not be able to.
We do have a robust security policy and are a large company. However, I don't want to escalate to my manager yet, as he is new and I want to give him a chance first. When I talked to him about my observations, he stated he is just more used to doing things this way, and its more efficient.
Question
How can I, without relying on my manager or formal company policy, assist this new team member with changing his behavior?
If informal methods don't work, should I escalate this and how without throwing the new person entirely under the bus?
training new-hires security mentoring
asked 5 mins ago
AnthonyAnthony
5,9231659
add a comment |
I currently work on the Information Security team at my employer, and have been working at my company for about 4 years. Recently a new member joined the team, who per his resume has about 1.5 years of experience in cybersecurity. He has never worked in a SOC before.
I was instructed by my manager to mentor / train this person, but will not be his direct manager going forwards. He is generally smart, but has some sloppy work habits that don't really follow best practices. We work with highly sensitive customer credit card , financial, and health data so proper security is essential. Our industry (insurance and healthcare) is tightly regulated.
Some of his actions are "loose" and somewhat "sloppy" such as lapses in communication before making a change to production security components (e.g: firewall, DLP software, IPS, and SIEM etc.), using domain admin credential for system administration tasks that don't require that high level of access, and not logging actions properly in audit logs. While he appears to know what he is doing, I am afraid that such actions may mean he may one day make a critical error in PROD that he may not be able to recover from and I may or may not be able to.
We do have a robust security policy and are a large company. However, I don't want to escalate to my manager yet, as he is new and I want to give him a chance first. When I talked to him about my observations, he stated he is just more used to doing things this way, and its more efficient.
Question
How can I, without relying on my manager or formal company policy, assist this new team member with changing his behavior?
If informal methods don't work, should I escalate this and how without throwing the new person entirely under the bus?
training new-hires security mentoring
asked 5 mins ago
AnthonyAnthony
5,9231659
add a comment |
I currently work on the Information Security team at my employer, and have been working at my company for about 4 years. Recently a new member joined the team, who per his resume has about 1.5 years of experience in cybersecurity. He has never worked in a SOC before.
I was instructed by my manager to mentor / train this person, but will not be his direct manager going forwards. He is generally smart, but has some sloppy work habits that don't really follow best practices. We work with highly sensitive customer credit card , financial, and health data so proper security is essential. Our industry (insurance and healthcare) is tightly regulated.
Some of his actions are "loose" and somewhat "sloppy" such as lapses in communication before making a change to production security components (e.g: firewall, DLP software, IPS, and SIEM etc.), using domain admin credential for system administration tasks that don't require that high level of access, and not logging actions properly in audit logs. While he appears to know what he is doing, I am afraid that such actions may mean he may one day make a critical error in PROD that he may not be able to recover from and I may or may not be able to.
We do have a robust security policy and are a large company. However, I don't want to escalate to my manager yet, as he is new and I want to give him a chance first. When I talked to him about my observations, he stated he is just more used to doing things this way, and its more efficient.
Question
How can I, without relying on my manager or formal company policy, assist this new team member with changing his behavior?
If informal methods don't work, should I escalate this and how without throwing the new person entirely under the bus?
training new-hires security mentoring
asked 5 mins ago
AnthonyAnthony
5,9231659
I currently work on the Information Security team at my employer, and have been working at my company for about 4 years. Recently a new member joined the team, who per his resume has about 1.5 years of experience in cybersecurity. He has never worked in a SOC before.
I was instructed by my manager to mentor / train this person, but will not be his direct manager going forwards. He is generally smart, but has some sloppy work habits that don't really follow best practices. We work with highly sensitive customer credit card , financial, and health data so proper security is essential. Our industry (insurance and healthcare) is tightly regulated.
Some of his actions are "loose" and somewhat "sloppy" such as lapses in communication before making a change to production security components (e.g: firewall, DLP software, IPS, and SIEM etc.), using domain admin credential for system administration tasks that don't require that high level of access, and not logging actions properly in audit logs. While he appears to know what he is doing, I am afraid that such actions may mean he may one day make a critical error in PROD that he may not be able to recover from and I may or may not be able to.
We do have a robust security policy and are a large company. However, I don't want to escalate to my manager yet, as he is new and I want to give him a chance first. When I talked to him about my observations, he stated he is just more used to doing things this way, and its more efficient.
Question
How can I, without relying on my manager or formal company policy, assist this new team member with changing his behavior?
If informal methods don't work, should I escalate this and how without throwing the new person entirely under the bus?
training new-hires security mentoring
training new-hires security mentoring
asked 5 mins ago
AnthonyAnthony
5,9231659
asked 5 mins ago
AnthonyAnthony
5,9231659
asked 5 mins ago
AnthonyAnthony
5,9231659
asked 5 mins ago
AnthonyAnthony
5,9231659
asked 5 mins ago
AnthonyAnthony
5,9231659
5,9231659
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "423"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
noCode: true, onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fworkplace.stackexchange.com%2fquestions%2f129146%2fhow-to-help-new-team-member-with-security-best-practices-without-escalation-to-m%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to The Workplace Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fworkplace.stackexchange.com%2fquestions%2f129146%2fhow-to-help-new-team-member-with-security-best-practices-without-escalation-to-m%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
