To be most effective, network security engineer not only must know the technical side of their jobs but also must understand the principles behind information security.
Learn these principles and take them to heart, and you’ll start out much further along than your peers who won’t take the time to bother learning them!
Principle 1: There Is No Such Thing as Absolute Security Principle 2: The Three Security Goals Are Confidentiality, Integrity, and Availability Principle 3: Defense in Depth as Strategy Principle 4: When Left on Their Own, People Tend to Make the Worst Security Decisions Principle 5: Computer Security Depends on Two Types of Requirements: Functional and Assurance Principle 6: Security through Obscurity Is Not an Answer Principle 7: Security = Risk Management Principle 8: The Three Types of Security Controls Are Preventative, Detective, and Responsive Principle 9: Complexity Is the Enemy of Security Principle 10: Fear, Uncertainty, and Doubt Do Not Work in Selling Security Principle 11: People, Process, and Technology Are All Needed to Adequately Secure a System or Facility Principle 12: Open Disclosure of Vulnerabilities Is Good for Security!
This helps prevent breaches of confidentiality, integrity, and accessibility, and executes the rule of resistance top to bottom. As you will discover, these standards are blended and coordinated to depict why certain security capacities and operations exist regarding genuine IT.
For more information check out Network Security Engineer blog