India’s talent pipeline in information security-skills emerges at its weakest with just under a percentage of student population in engineering equipped with basic skills in information security. This report by EC-Council, the global professional certification body for IT security related programmes, looks into the skill gaps gaps and its consequences.
|ALL INDIA Skill Level Analysis (in %)|
In the individual skill categories too, candidates have performed poorly
|Performance of the candidates in individual skill categories (in %)|
|Authentication & Authorisation||28.14||71.86|
EC Council said that Improper handling of errors and exception makes you vulnerable to
-Disclosure of sensitive information
Distributed denial of service attacks have been used to divert security personnel attention while millions of dollars were stolen from banks, according to a security researcher
Improper authentication and authorization makes you vulnerable to credential theft, eavesdropping, brute-force and dictionary attacks, account hijacking, information leakage, disclosure of confidential data among others.
Improper input validation makes you vulnerable to cross-site request forgery, cookie manipulation, form field manipulation among others.
To fill this gap, EC-Council has comprehensive secure programming training programmes through its EC Council Certified Secure Programmer (ECSP).