7 Questions to Ask a Security IT Consultant
Everyone knows how hard it is to find good help these days, and finding a good IT consulting service is no different. In order to figure out if your IT consultant really knows what’s up, ask some trick questions. Here are a few to get you started:
1. Can you tell me how vulnerable I am to the MyDoom virus? MyDoom is not a virus, it is actually a worm and a good IT consulting expert should correct you on this fact. Some other warning signs are if the IT consulting expert simply proceeds to describe MyDoom's actions without correcting you, a sign that they are either unassertive or ignorant, or if they don't know what MyDoom is.
2. If my website is under attach by a DDOS, can you stop it? The fact of the matter is that once a DDOS attach is underway, it cannot be stopped. There are steps, however, that can be taken to defend the website. If the IT consulting expert claims they can stop the attack or if they say there is no way to defend the website, this may be a sign that you are dealing with someone not too competent in IT consulting.
3. Tell me three ways you would suggest to secure a WiFi network. Your IT consulting expert should be able to rattle off at least three ways without hesitation. If they are not able to do so, run away.
4. Can you create a good password for me and explain the logic behind it? This may seem like a simple task, but it is incredibly important for a quality IT consulting expert to be able to create a well-constructed and secure password. This is a basic security concept that is essential knowledge for an IT consulting expert.
5. What are the benefits of HEPA for my computer? OK, this is a trick question since HEPA stands for high efficiency particulate air filter and is a type of air filter that keeps dust and contaminates from damaging hardware in a data center. This is not technically in the field of IT consulting. However, if the IT consulting expert tries to bluff his way out of it, thinking it is an acronym for a type of IT or security specification, may not be some one you can trust.
6. Tell me the benefits of using WEP to encrypt a hard drive. This is another trick question since WEB is not a good way to encrypt data that is sent over an 802.11 wireless. Bluffers may try to justify its use but don't fall for is. You would never want to use WEP to encrypt a hard drive.
7. What would you do if you discovered a stash of illicit material on an employee’s computer? This is a good way to understand the morals of the IT consulting expert and assess his ability to handle a situation that has complex security and ethical issues. Ideally, the IT consulting expert would contact you or a senior staff member directly. A warning is if he says he would talk to the employee in question directly without involving senior staff members.
1. Can you tell me how vulnerable I am to the MyDoom virus? MyDoom is not a virus, it is actually a worm and a good IT consulting expert should correct you on this fact. Some other warning signs are if the IT consulting expert simply proceeds to describe MyDoom's actions without correcting you, a sign that they are either unassertive or ignorant, or if they don't know what MyDoom is.
2. If my website is under attach by a DDOS, can you stop it? The fact of the matter is that once a DDOS attach is underway, it cannot be stopped. There are steps, however, that can be taken to defend the website. If the IT consulting expert claims they can stop the attack or if they say there is no way to defend the website, this may be a sign that you are dealing with someone not too competent in IT consulting.
3. Tell me three ways you would suggest to secure a WiFi network. Your IT consulting expert should be able to rattle off at least three ways without hesitation. If they are not able to do so, run away.
4. Can you create a good password for me and explain the logic behind it? This may seem like a simple task, but it is incredibly important for a quality IT consulting expert to be able to create a well-constructed and secure password. This is a basic security concept that is essential knowledge for an IT consulting expert.
5. What are the benefits of HEPA for my computer? OK, this is a trick question since HEPA stands for high efficiency particulate air filter and is a type of air filter that keeps dust and contaminates from damaging hardware in a data center. This is not technically in the field of IT consulting. However, if the IT consulting expert tries to bluff his way out of it, thinking it is an acronym for a type of IT or security specification, may not be some one you can trust.
6. Tell me the benefits of using WEP to encrypt a hard drive. This is another trick question since WEB is not a good way to encrypt data that is sent over an 802.11 wireless. Bluffers may try to justify its use but don't fall for is. You would never want to use WEP to encrypt a hard drive.
7. What would you do if you discovered a stash of illicit material on an employee’s computer? This is a good way to understand the morals of the IT consulting expert and assess his ability to handle a situation that has complex security and ethical issues. Ideally, the IT consulting expert would contact you or a senior staff member directly. A warning is if he says he would talk to the employee in question directly without involving senior staff members.