I was playing Faster Than Light recently and came to a sobering conclusion. As my ship burned and my crew furiously attempted to put out fires and repair systems, I saw startling similarities between roguelike games and the jobs in Information Security.
For those unfamiliar with roguelikes, they are games characterized by randomly generated areas, punishing difficulty, and permadeath. You will die in roguelikes. A lot. With enough persistence and skill, you can win the game. But you must be willing to learn from each death. Each failure highlights a mistake made that should never be repeated in subsequent games.
What does this have to do with Information Security? Let’s start with number one. (more…)