1
I asked him why he don't try to "recruit" them from IT department. That would be a great advantage as the developers already know the company, the vision and the products. He said that he tried different ways to attract developers into his infosec department but none of them were interested though the salary would be bigger and being in a small department, the cohesion would be stronger among colleagues. I've told him that maybe, his approach is not the best and that he should try new ways like showing how cool infosec would be (not just asking).
My question is: What it would take to convince a developer (you) to switch to infosec (appsec -- application security)?
CTF365 it’s a “Security Training Platform for IT industry with a focus on Security Professionals, System Administrators and Web Developers”. The Platform implements CTF (Capture The Flag) concepts and leverages gamification mechanics to improve retention rate and speed up the learning/training curve.
Because of its Security Gamification Engine, CTF365 makes InfoSec trainings become, entertaining, challenging, community driven with continuous improvement and hands on
We've manage to implement CTF365 Real Time Cyber Attacks that shows everything is happening on the platform.
It shows all the attacks and connected users on the platform http://ctf365.com/pages/map.
Blinking dots = CTF365 VPN connected users Blue Balloons = Fortresses (servers) build by our users Blue Doted Lines = The attacks
It's an work in progress and works on Chrome and IE. There are some bugs in Firefox. Also we'll add some gamification things in the future like most active users, perform levels and so on. Things that can help companies to see their employees improvements.
Any feedback would be more than welcomed.