I can't believe a Big 5 consultant just advised someone to quite possibly break his employment agreement and depending on where this person is located the law. If you want to burn a bridge and end up fired or even charged with an offense, follow this persons advice otherwise.....
DO NOT HACK ANYTHING UNLESS YOU HAVE WRITTEN APPROVAL FROM YOUR SUPERIORS. Just because you are a sys-admin with security responsibilities does not mean that you have a carte blanc approval to hack the CEO's email. Yes, going to the CEO with a presentation on security, in particular his personal risks and how you can address them is a good idea but hacking anything is definitely a career limiting move. One thing you will have to eventually learn is that some C-level people just don't understand or care that they could be liable for security incidents. If you make a sound case and find little or no buy in then find a new job and move on. Leave it at that and watch the newspapers and eventually the C team will get burned by their own ignorance. > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi there, > well, You are being a bit paranoid and it's a good practice > for security pros... I suggest you try and convince your CEO > (Directly- as it's HIS ass on the line here in case your next > cracker is less mercifull) to sit and listen to a nice > lecture (presentation) where you, as his security manager, > explain exactly how you break into his own > Inbox/desktop/whatever you should bring evidence!!!!!!! > strong ones!!!!!!!! If you decided to resign, that's O.K, but > I think a little tactics can get you further > in your career, and your CIO a little backwards. > Rmmember-Hack the Systems and bring Evidence!!!! > > Gaziel Avishay, > Information Risk Management > KPMG Somekh-Chaikin > Tel-972-3-6848606/591 > >
