The CSO Of Equifax Was A Music Major With No IT Background…. WTF?

From the “are you serious department?” comes this story from Marketwatch which details the fact that the Chief Security Officer of Equifax had no formal IT background as she was a music major:

Equifax “Chief Security Officer” Susan Mauldin has a bachelor’s degree and a master of fine arts degree in music composition from the University of Georgia. Her LinkedIn professional profile lists no education related to technology or security.

This is the person who was in charge of keeping your personal and financial data safe — and whose apparent failings have put 143 million of us at risk from identity theft and fraud. It was revealed this week that the massive data breach came due to a software vulnerability that was known about, and should have been patched, months earlier.

A person with no IT training working as a CSO for an organization that has the personal data of millions? That sounds like an #EpicFail. If that’s not stunning enough, there’s more:

Reporting by a few tech-savvy blogs has found that as soon as the Equifax data breach became public, someone began to scrub the internet of information about Mauldin.

Her LinkedIn page was made private and her last name replaced with “M.” Two videos of interviews with Mauldin have been removed from YouTube. A podcast of an interview has also been taken down.

Unhappily for the scrubbers, the internet archives some material and a transcript of one interview has survived.

This illustrates that once something gets put onto the Internet, it’s very hard to remove it.  But let me get to the key point. On top of having shoddy IT practices and not patching their infrastructure in a timely manner, this failure to have someone who actually knows what they are doing in terms of securing the personal information of millions underscores the fact that it should be no shock that these clowns got pwned in epic fashion. It also underscores that they need to be punished for their absolute stupidity in the most severe way possible to ensure that others who think that this sort of behavior is acceptable changes their mind immediately.

Advertisements

4 Responses to “The CSO Of Equifax Was A Music Major With No IT Background…. WTF?”

  1. […] Straight Talk About Infomation Technology From A Nerd Who Speaks English « The CSO Of Equifax Was A Music Major With No IT Background…. WTF? […]

  2. Obviously a social-justice/diversity program hire. I hear echoes of fired Googler James Damore here.

    Take heed, everyone: Hire people for their skills and their skills *only*… Not the color of their skin or the wobbly bits between their legs.

  3. […] screwed up to this degree before he “retired”. Examples of this #EpicFail include hiring a CSO with no IT experience or not applying a patch for Apache Srtuts for months, or having a publicly accessible database with […]

  4. […] the breach was announced, it seems both everybody, and nobody are to blame. I’ve seen threads condemning the appointment of a CSO because she didn’t have a degree in teh cybers. I’ve seen […]

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: