Japan to hold 1st competitive cybersecurity talent search

Nothing can be more far from the truth. Comming from the ITsec industry, Japan has very bad one. It was strengthened few years ago, but still light years from subpar. Big companies everywhere in the world invest into ITsec. But for Japan with faxes and Hanko stamps, it's something mendokusai.

I've heard many excellent Chinese spies would join it secretly. They have a fake Japanese nationality.

Japan actually has a pretty solid cyber security setup - it was massively strengthened a few years ago after winning the 2020 bid.

Ah the olympics, yeah they should.

Anyway, good to know.

Japan is so far behind it's not funny... they think scam emails awareness and making sure anti virus is updated is the only thing you need to do... Old farts running the show don't want to be shown up for younger people..

We are too far behind. We should outsource to Chinese upcoming hackers. I believe many want to leave Hong Kong...

Imagine some twenty year old telling their oyaji boss what needs to be done-this is real life not a manga-it isn’t going to happen...

 I am running into web interfaces to projects with very restrictive policies (in the bad sense) on what your username or password can be. It’s not uncommon to be able to select max 12 but usually 6–8 characters as a password [0-9a-zA-Z]

I agree as a user.

Seems its not uncommon to be restricted to alphanumerics only for password,

@yildiray Agree the factor of a human error – be it caused by carelessness or the lack of education and awareness – is no different to other countries. However, perhaps a bit more than abroad, I am running into web interfaces to projects with very restrictive policies (in the bad sense) on what your username or password can be. It’s not uncommon to be able to select max 12 but usually 6–8 characters as a password [0-9a-zA-Z], pretty much a lack of 2FA, if you are lucky you get one-time passwords sent to your phone or email. Makes me wonder how old the infrastructure is and how safe the data in store is.

Too bad the last beeper tech was shut off last year. Would have been great for secret texting.

For all English learners, please repeat, "A day late and a dollar short." Or, "Too little too late." Or, "Really? Now?" For the last phrase please express with a sense of incredulity.

That is far from the truth

I am a blue team consultant and have worked with companies all over the world on this. There are good and bad examples everywhere, Japan isn't any better or worse than others.

Especially when you factor in that you can work up to the head of the government cyber security division without knowing how to use a smartphone or computer. 

This doesn't impact the effectiveness of those doing the actual work. Though I agree it is a bizarre choice.

I can already predict a few things will happen.

Cybersecurity will be outsourced to India and Vietnam as most IT workers for Japanese companies are currently these people.

FireEye and other American cybersecurity companies will win big contracts with Japan in the category of defense. More money for Americans!

Japan will continue doing nothing as China, Russia and other belligerent states continue hacking and dominating Japanese cyber infrastructures without any abatement.

It's not about talent, it's about organization. Japan has great talent but those talent just go away with poor organization.

Don't tell me the hackers can't go home until the boss does?

Japan actually has a pretty solid cyber security setup - it was massively strengthened a few years ago after winning the 2020 bid. The vast majority of issues here are the same human errors (phishing, misplacing physical media) that plague every country.

That is far from the truth. It has more to do with a lack of online services than actual cyber security. Especially when you factor in that you can work up to the head of the government cyber security division without knowing how to use a smartphone or computer. Computer knowledge is a prerequisite for cyber security.

within the last 3 months we've seen softbank, docomo, and postal service leaks. plus 48 hours of the nikkei stock servers downtime.

none of the incidents have been explained yet.

i don't think that Japan is able to handle any cyber security. just outsource it to any 1st world country.

Definitely the box. The box needs to be open first to think outside of the box. Hammer that nail down. The box is sealed.

Perhaps 7-11 can recommend some people.

It starts with and consists mostly of own errors, not those hacker attacks. Remember, the IT error always sits before monitor and keyboard. lol

Minister for Cybersecurity Sakurada's inability to use email stands out but I think that is just the tip of the iceberg.

Many of the best cybersecurity experts are white hat hackers who came from "gray" or even "darker " communities who are not known for their respect for authority or ability to follow rote patterns of thinking.

They are able to be assimilated into governmental or private institutions abroad.

The problem is ossified Japanese institutions are not forgiving of past youthful indiscretions or thinking out of the box.

It's not about talent, it's about organization. Japan has great talent but those talent just go away with poor organization.

Finally realized their cyber security is worthless

Japan actually has a pretty solid cyber security setup - it was massively strengthened a few years ago after winning the 2020 bid. The vast majority of issues here are the same human errors (phishing, misplacing physical media) that plague every country.

Knowing the sheer volume of failed attacks that are happening daily, I’d wager this recruitment drive is as much about further improving digital forensics as defense.

Finally realized their cyber security is worthless...