In this video, Marc Menninger describes why retailers are a strong marketplace for IT security professionals. Learn how the Payment Card Industry Data Security Standard or PCI DSS requires retailers to be secure. Explore why retailers are prime cyberattack targets. Understand why the demand for IT security professionals from retailers is growing.
- [Instructor] There are good reasons why all large retail businesses are a strong marketplace for IT security professionals seeking employment. First, most retail businesses process credit cards, which means they must comply with a credit card industry regulation to be secure. This regulation is the payment card industry data security standard or PCI DSS. PCI DSS has strict security control requirements that retailers need to follow or they'll lose their ability to process credit cards.
These security controls include, installing and maintaining firewalls, encrypting cardholder data in transit, implementing anti-malware software, and monitoring and testing networks regularly. Because PCI DSS is an industry regulation, it applies to any business in the world that processes Visa, MasterCard, and many other credit card brands. In addition to traditional brick and mortar retailers, PCI DSS applies to online retailers in businesses using credit cards to conduct e-commerce.
Ever since PCI DSS was first released in 2004, the need for IT security at retailers has been increasing. Retailers need IT security professionals to implement the security programs mandated by the regulation. But retailers face special challenges that make them subject to cyber attacks, even with PCI DSS. In order to stay competitive, retailers must provide many points of sale and opportunities for consumers to make quick purchases. However, that creates more opportunities for cyber attacks.
Hackers know that if they can compromise a large retailer they could gain access to data on millions of credit cards, which is extremely valuable on the black market. And that leads to the next reason why retailers are a key marketplace for IT security professionals, they're prime cyber attack targets. According to information and communications technology firm NTT Group's 2016 Global Threat Intelligence report, retailers experienced more cyber attacks than any industry, three times as many as the previous top target, the financial industry.
This drives the need for more qualified security professionals to help protect corporate and customer information. And the final reason why large retail businesses are a strong marketplace for IT security professionals is the demand for them continues to grow. According to the 2015 Burning Glass Cybersecurity jobs report job postings for IT security professionals from retailers grew 120% between 2010 and 2014. As the threats to retailers continue to rise, so will the need for IT security professionals.
Marc closes with a few pieces of career advice specific to the world of information security, which will help you succeed in this dynamic and high-demand industry.
- IT security key concepts
- The job marketplace (government vs. healthcare, etc.)
- IT security success traits
- Career specializations
- IT security certifications
- Getting experience
- Marketing yourself