Security and Fraud Detection Consultant

Part
01
of one
Part
01

Security and Fraud Detection Consultant

When hiring a consultant that specializes in security and fraud detection, good analytical skills, relevant experience, strong technical knowledge, trustworthiness, curiosity, ability to think like a hacker, good communication and persuasive skills, someone who thinks outside the box, risk management knowledge and a healthy dose of skepticism are characteristics one should look for.

1. Good analytical skills

  • Kevin West, K Logix CEO which is a data security company that helps other companies build security program says that good analytical skills are vital to look for when hiring a security and fraud detection consultant.
  • Kevin continues to argue that because the industry does not have enough consultants, companies will look to other fields to recruit staff who need to be analytical and able to translate security issues and report them.
  • Tamer Hassan, CTO at White Ops, a company that creates technology used to detect and prevent online fraud, also insist on hiring a consultant with great analytical skills who can analyze the ecosystem for fraud.

2. Relevant experience

  • Douglas Landoll who is the CEO at Lantego and an information security leader for over 25 years advises that one needs to look for relevant experience in the industry when hiring a security and fraud detection consultant. He says that the person being considered for the position should know how to interpret and apply industry regulations and requirements.
  • Symon Perriman, a Vice President at 5nine Software, the leading provider in global Hyper-V virtualization security and management, agrees that when hiring, one should look for a person with experience in how compliance regulations work.
  • A staff of the digital fraud detection and prevention company Kount also agree that one needs to look for people with experience in detecting fraud and recognizing anomalous data within data sets [4].
  • Kount advises that people with a background in legal, finance, law enforcement, accounting and statistics make strong candidates for security and fraud detection positions.

3. Strong technical knowledge

  • Brian Smith, a vice president and information security officer at InfoSight, Inc. says that one should look for a candidate who has the technical knowledge to understand the vulnerabilities and threats posed by fraudsters and how to address these issues.
  • Julian Weinberger, an information security expert in areas such as SSL-VPN agrees that one needs to look for a candidate with strong technical knowledge in things such as identity management, network and application security, and cryptography.
  • Security consultants from Kount say that one needs to look for expertise in security and fraud detection when hiring a consultant that specializes in security and fraud detection.

4. Trustworthiness

  • Douglas Landoll, an information security leader for over 25 years says that someone who can be trusted needs to be considered for the position as it exposes them to the company's assets and security strategy.
  • Security intelligence staff at IBM also emphasize the need to look for someone who must be in a position to form strong, trust-filled relationships quickly.

5. Curiosity

  • Sam Kassoumeh, the co-founder of Security Scorecard, which provides security ratings for the business ecosystems of companies, looks for someone who is curious when hiring a security and fraud detection consultant.
  • Jen Martinson, an editor in chief of a website that specializes in internet and data security called Secure Thoughts, would look for a curious person with a thirst to keep learning. This is because there is new technology coming out every day and the person needs to daily check what is in the news, attend conferences on security issues, and read security and fraud industry journals to be prepared to deal with any threats.

6. Ability to think like a hacker

  • Greg Edwards, the CEO of WatchPoint Data, says that a candidate needs to have a built-in hacker mentality in order to make the cut.
  • Chris Camejo, director of threat and vulnerability for NTT Com Security, and a former penetration tester agrees by saying that a candidate needs to be aware of what hackers are doing, the attacks they are using to compromise organizations and know what they need to protect.

7. Good communication and persuasive skills

  • Roberto Arias, the principal consultant of Metaluxo IT Security and IT security professional based in Berlin says that one should go for a candidate with good communication and persuasive skills so they can effectively communicate with all levels of employees and persuade management to implement security guidelines.
  • Kevin West, K Logix CEO, which is a data security company that helps other companies build a security program agrees that a candidate needs to be a good communicator and collaborator.

8. Someone who thinks outside the box

  • According to Roberto Arias who is an IT security professional, creative candidates who think outside the box are needed as companies cannot just rely on compliance checklists and manuals in cases of fast and complex attacks in the security and fraud detection industry.
  • Kevin Murray, a certified, independent security consultant that specializes in surveillance detection and business counterespionage agrees by arguing that the candidate needs to have a holistic outlook in order to take into account the genesis of information that may lead to security and fraud vulnerabilities.

9. Risk management knowledge

  • Brian Smith, an information security officer at InfoSight, Inc. says that the candidate one is hiring must have a risk-based approach when carrying out their duties to be able to easily implement a security program based on risk.
  • Jen Martinson, an editor in chief of a website that specializes in internet and data security called Secure Thoughts, agrees by saying that an invaluable skill that a candidate for a security and fraud detection position should have is the ability to risk-assess people to determine what threat they could possess.

10. A healthy dose of sKepticism

  • David Michaux, who leads Whispering Bell's expansion into the IT and technical security sector would go for a candidate who has some form of paranoia and mistrust of security solution vendors who seem too good to be true, as he believes that nothing is given in the industry.
  • Keith Mccammon, a director of detection operations at Red Canary and an expert in offensive cyber computing and defensive IT security, agrees by saying that a security professional needs to have the ability to think like an investigator and a healthy level of skepticism.

methodology

In order to determine what one should look for when hiring a consultant that specializes in security and fraud detection, we searched for expert opinion and advice from security and fraud detection experts and companies in the sector. This strategy produced several characteristics to look for when hiring a consultant that specializes in security and fraud detection. We then examined these characteristics and identified those that were mentioned multiple times by experts and security companies and include them in the findings.
Sources
Sources

Quotes
  • "...companies are looking beyond the standard requisite knowledge and are instead seeking versatile professionals who are up-to-date on the latest security threats and technologies. They are seeking eager individuals with an unquenchable thirst for knowledge."
Quotes
  • "...we asked three managers exactly what they look for when recruiting a security engineer to join the team."
  • "What are three qualities security engineers at your company should have? Unconventional, analytical and responsible."
Quotes
  • "Our team members must always be open to the option that things are about to change."