6 answers
3
Questions
Asked
582 views
How do IT security people deal with cyber criminals ?
#criminal-justice
Login to comment
6 answers
Updated
Eugenia’s Answer
They don't. I mean - IT security people do not deal with cyber criminals. IT security people might perform technical investigation of an incident and, if they come to conclusion there are signs of a cyber crime, IT security people will involve police. So you need to decide what exactly you wish to know - how the IT security investigate the cases and track the bad guys, or what can happen to cyber criminals if they are caught by police.
Updated
Ian’s Answer
Roland,
Thank you so much, this is a great question with a long answer. There are a great number of approaches that information technology professionals can use to help combat crime, particularly crimes that occur in the Deep Web. As you might know having computer skills and general knowledge of social media accounts is a surprisingly useful tool to law enforcement agencies since this can be a very effective way of tracking both physical and digital movements of a suspect. I know of one individual who essentially found work baiting sexual predators through the dark web and exposing their information to the FBI. He has some world-class skills in computer science and is highly regarded for his hacking abilities. He has also done some consulting work with a number of agencies to assess how secure their information really is. There's a plethora of job opportunities out there for individuals looking to get involved with forensic computer science, and although you might not affect any arrests in person you can know you'll play a pivotal role in finding information that others might be willing to hide if you choose to go that route. I also landed a job once upon a time with a local police department as an intelligence worker providing addresses and essential information to police officers working in the field as they requested it. These positions can be few and far between but are becoming more common, but I wouldn't expect them to pay very well. I wish you the absolute best of luck feel free to shoot out any more questions if you have some.
Thank you so much, this is a great question with a long answer. There are a great number of approaches that information technology professionals can use to help combat crime, particularly crimes that occur in the Deep Web. As you might know having computer skills and general knowledge of social media accounts is a surprisingly useful tool to law enforcement agencies since this can be a very effective way of tracking both physical and digital movements of a suspect. I know of one individual who essentially found work baiting sexual predators through the dark web and exposing their information to the FBI. He has some world-class skills in computer science and is highly regarded for his hacking abilities. He has also done some consulting work with a number of agencies to assess how secure their information really is. There's a plethora of job opportunities out there for individuals looking to get involved with forensic computer science, and although you might not affect any arrests in person you can know you'll play a pivotal role in finding information that others might be willing to hide if you choose to go that route. I also landed a job once upon a time with a local police department as an intelligence worker providing addresses and essential information to police officers working in the field as they requested it. These positions can be few and far between but are becoming more common, but I wouldn't expect them to pay very well. I wish you the absolute best of luck feel free to shoot out any more questions if you have some.
Updated
Seema’s Answer
IT Security teams are responsible for understanding how to recognize cyber threats and potential adversaries on the network who could pose harm to their company's infrastructure, applications and data. They must inform their management and senior leadership team if they surface any malicious cyber activity (by known or unknown adversaries external or internal) that has led to a data breach since that will probably have material impact on the business (e.g. in-compliance with data security and privacy regulations, legal investigation processes and fees, fines, company brand reputational damage, shareholder/customer loss of confidence, etc.). IT Security teams might not necessarily directly deal with cyber criminals but more likely, they can indirectly (if they encounter cyber crime taking place/having taken place during the course of their analysis and investigations work).
Updated
Katharine’s Answer
Cybercrime can be dealt with from the technical side or the human side. The technical side involves software, intrusion detection, firewalls, etc. whereas the human side deals with social engineering such as phishing.
Updated
Vineeth’s Answer
IT security doesn’t Directly deal with Cyber Crime, however, they feel a breach od Code or any Danger they involve Police.
However, IT Security takes a lot of Precautions like
• Real-time Protection by Using Full security Internet Suite
• Advising the Employees to use Strong Passwords and Change them Regularly
• Keeping all the Software’s Updated
• Strengthening the Network and managing all the Settings
In a way, fighting cybercrime is everybody’s business. Think of it as an obligation to do your part in the fight against cybercrime. For most people, that means following a few simple, common-sense steps to keep yourself and your family safe. It also means reporting cybercrimes to relevant officials at the appropriate time. When you do, you’re helping to fight cybercrime.
Updated
F. Alexandra’s Answer
Cyber Security has many components and it doesn't include just IT. In some organizations IT and cyber security are two separate departments. How they deal with it, depends on the breach, what kind, how long it has been in the system, what its main function is. Most organizations have a risk management system in place to prevent a breach others have a cyber security breach protocol they follow. But pretty much the end result is the same, identify the bad actor, stop the breach, control damage or purge of data, report and remove.