1. Welcome! Please take a few seconds to create your free account to post threads, make some friends, remove a few ads while surfing and much more. ClutchFans has been bringing fans together to talk Houston Sports since 1996. Join us!

[geeks] Fortune 50 Security Director asked me..I'm going to have to know what that "Black Box" is

Discussion in 'BBS Hangout' started by heypartner, Oct 11, 2014.

Tags:
Page 1 of 2
  1. heypartner

    heypartner Contributing Member

    Joined:
    Oct 27, 1999
    Messages:
    62,615
    Likes Received:
    56,405
    Background
    So, I have to talk to Fortune 500 Security Directors regularly who question me as part of purchase of our SaaS software. Among other IT issues, they question me on our 3rd party audits regarding penetration tests.

    That's all cool. They should. And that's why we pay big bucks to hacker firms to attempt to penetrate us, and write Audit Reports of their work.

    Story
    So, a head Security Officer at a Fortune 50 asked me ... so in Section 5.1.1. of your audit it mentions a "Black Box",,,we are going to have to know what that is.

    so sigh

    Geek Challenge
    Can someone at clutchfans please tell him what a black box is?

    Conclusion
    These Fortune 500 firms are so vulnerable...it's silly

    I'm so disappoint...
     
    #1 heypartner, Oct 11, 2014
    Last edited: Oct 12, 2014
  2. fadeaway

    fadeaway Contributing Member

    Joined:
    Apr 25, 2000
    Messages:
    14,554
    Likes Received:
    1,096
    It's what you encounter in the back room at Strippin' Sistas Bar & Grill.
     
    #2 fadeaway, Oct 11, 2014
  3. AroundTheWorld

    AroundTheWorld Insufferable 98er
    Supporting Member

    Joined:
    Feb 3, 2000
    Messages:
    70,064
    Likes Received:
    47,778
    Hope Solo
     
    #3 AroundTheWorld, Oct 11, 2014
  4. heypartner

    heypartner Contributing Member

    Joined:
    Oct 27, 1999
    Messages:
    62,615
    Likes Received:
    56,405
    Dude, you've made this "Hope Solo" comment in many threads (black hole), and you are German.

    We have a special place for Germans as a category in p*rn.

    just saying
     
    #4 heypartner, Oct 11, 2014
  5. TheMystery008

    TheMystery008 Member

    Joined:
    Jul 26, 2012
    Messages:
    4,651
    Likes Received:
    1,277
    Lol.

    Just learned this is in my Marketing class.

    It was on the test.

    But I'll pass HP.
     
    #5 TheMystery008, Oct 11, 2014
    1 person likes this.
  6. da_juice

    da_juice Member

    Joined:
    Dec 16, 2009
    Messages:
    9,315
    Likes Received:
    1,070
    Per wikipedia:

    "In penetration testing, black-box testing refers to a methodology where an ethical hacker has no knowledge of the system being attacked. The goal of a black-box penetration test is to simulate an external hacking or cyber warfare attack."
     
    #6 da_juice, Oct 11, 2014
    1 person likes this.
  7. Ziggy

    Ziggy QUEEN ANON

    Joined:
    Jun 11, 1999
    Messages:
    36,871
    Likes Received:
    13,266
    Head Security Officer doesn't need to know what a black box is. They can just ask someone from the company they're paying to tell them...
     
    #7 Ziggy, Oct 11, 2014
  8. bigtexxx

    bigtexxx Contributing Member

    Joined:
    Jun 12, 2002
    Messages:
    26,925
    Likes Received:
    2,267
    I can assure you that you mother did not even come close to passing any kind of penetration test last night
     
    #8 bigtexxx, Oct 11, 2014
  9. heypartner

    heypartner Contributing Member

    Joined:
    Oct 27, 1999
    Messages:
    62,615
    Likes Received:
    56,405
    This wasn't a pop quiz. The dude had our audit report for weeks before the call. That was a planned question from him. And his team was on the call

    Sorry, this is like a CFO not knowing what EBIDTA is. imo
     
    #9 heypartner, Oct 11, 2014
    Last edited: Oct 11, 2014
  10. droxford

    droxford Member

    Joined:
    Oct 26, 2001
    Messages:
    10,145
    Likes Received:
    1,624
    Don't be silly - it's a black woman's coochie.
     
    #10 droxford, Oct 12, 2014
  11. Invisible Fan

    Invisible Fan Contributing Member

    Joined:
    Dec 5, 2001
    Messages:
    43,682
    Likes Received:
    25,625
    Maybe you crashed a plane and had the flight recorder.
     
    #11 Invisible Fan, Oct 12, 2014
  12. Jontro

    Jontro Member

    Joined:
    Feb 3, 2010
    Messages:
    34,661
    Likes Received:
    22,446
    Is it something I could possibly fap to?
     
    #12 Jontro, Oct 12, 2014
  13. Yung-T

    Yung-T Member

    Joined:
    Apr 16, 2009
    Messages:
    24,403
    Likes Received:
    7,050
    The only suitable response in that situation should've been "ur moms vajayjay, lulz".
     
    #13 Yung-T, Oct 12, 2014
  14. heypartner

    heypartner Contributing Member

    Joined:
    Oct 27, 1999
    Messages:
    62,615
    Likes Received:
    56,405
    I was tempted to say "Do you have metric tools?"

    We can laugh here, but when you are on spot...I froze for a second with the salesman perplexed why I froze...like "should I jump in?"

    Salesmen can solve this problem
    I froze for about 3 beats...because I wasn't sure what to say without embarrassing the InfoSec Director in front of his team.

    This is my first thought and not what I said, "Ummm, it's not a box; it's a methodology...you can look it up on wikipedia?" How is that not embarrassing ... any way you phrase it? That's what's going through my head ,,, and hence the noticeable pause in my answer.

    So, there is a solution to this problem set. I think any salesman can tell us.

    It starts with, "That's a good question!" As much as that is hard to swallow for the Scientists of the world.

    Geek Problem Set

    What do you say when everyone in the "room" thinks the question is valid, when, in fact, it doesn't make sense at all. And the correction might be embarrassing to the prospective client, in the final stage of a multi-million dollar sell.
     
    #14 heypartner, Oct 12, 2014
    Last edited: Oct 12, 2014
  15. fadeaway

    fadeaway Contributing Member

    Joined:
    Apr 25, 2000
    Messages:
    14,554
    Likes Received:
    1,096
    Seriously, though. You should have just explained it. When everyone in the room but you thinks that a question is valid, then it is in fact valid, and it is up to you to explain things. Pausing or acting weird just turns a normal situation into an awkward one.

    Also, things can be explained without being condescending. As long as you don't act like a douche, he shouldn't be offended.
     
    #15 fadeaway, Oct 12, 2014
  16. Yung-T

    Yung-T Member

    Joined:
    Apr 16, 2009
    Messages:
    24,403
    Likes Received:
    7,050
    This.
     
    #16 Yung-T, Oct 12, 2014
  17. jev5555

    jev5555 ¯\_(ツ)_/¯

    Joined:
    Oct 8, 2002
    Messages:
    4,354
    Likes Received:
    2,015
    You need to be, or pretend to be, the smartest person in the room at all times. They're paying you to make them look good. So put some confidence in their decision making by being the smartest guy in the room and give a valid answer.

    And don't ever type SaaS software again. It's redundant. :grin::grin::grin:
     
    #17 jev5555, Oct 12, 2014
    1 person likes this.
  18. professorjay

    professorjay Contributing Member

    Joined:
    Oct 20, 2006
    Messages:
    9,676
    Likes Received:
    388
    <iframe width="560" height="315" src="//www.youtube.com/embed/iDbyYGrswtg" frameborder="0" allowfullscreen></iframe>

    <iframe width="420" height="315" src="//www.youtube.com/embed/UTBsm0LzSP0" frameborder="0" allowfullscreen></iframe>

    <iframe width="420" height="315" src="//www.youtube.com/embed/18N2k1TBBRE" frameborder="0" allowfullscreen></iframe>
     
    #18 professorjay, Oct 12, 2014
  19. heypartner

    heypartner Contributing Member

    Joined:
    Oct 27, 1999
    Messages:
    62,615
    Likes Received:
    56,405
    I didn't explain my answer. I posed a question to geeks for how they'd do it.

    We should share stories. No?

    I'm not looking for an answer, for myself. Mine worked. As like my 20th time talking to Fortune 500 directors, it was just a challenge that I'd never encountered before...so I froze for 3 beats. And wanted to share that story.

    as Jev5555 said, you are paid to be the smartest person in the room, just don't insult the client.

    The cool thing in all these many calls is I've discovered how to categorize these Fortune 500 security officers based on their company's business.

    Let me give props..the Cleveland Clinic Security Officer impressed more than any other. By Far!

    Do you want to guess why?
     
    #19 heypartner, Oct 12, 2014
  20. freemaniam

    freemaniam 我是自由人

    Joined:
    Nov 18, 2005
    Messages:
    3,528
    Likes Received:
    309
    [​IMG]

    A picture is worth a thousand words
     
    #20 freemaniam, Oct 13, 2014
(You must log in or sign up to post here.)
Page 1 of 2

Share This Page

Toggle Width
Style
ClutchFans Original

  • About ClutchFans

    Since 1996, ClutchFans has been loud and proud covering the Houston Rockets, helping set an industry standard for team fan sites. The forums have been a home for Houston sports fans as well as basketball fanatics around the globe.

  • Rockets Content

  • Support ClutchFans!

    If you find that ClutchFans is a valuable resource for you, please consider becoming a Supporting Member. Supporting Members can upload photos and attachments directly to their posts, customize their user title and more. Gold Supporters see zero ads!


    Upgrade Now