Do security engineers have admin access to all IT tools in your org?

do-security-engineers-have-admin-access-to-all-it-tools-in-your-org?

Everyone knows that someone could be secretly watching you or your child with your webcam right now? Is it worth taking such a risk? camDown can help stop them!

I'll start by saying that in the 20 years I've been in IT with the last 10 or so in CS I've noticed a trend where businesses are comfortable granting system administrator roles and access to InfoSec folks and I wanted to see if I'm seeing things or what.

I don't think its a good idea because well, for one InfoSec folks are not IT administrators (they can be but for the most part they aren't due to the scope and breadth of their jobs as it is) and because InfoSec folks are an attack vector for most orgs. Yes all users are attack vectors but I imagine the bounty is higher if you're able to pop an organization using an IS guy's creds or other vulnerability.

You know, I just wanted to mention that camDown helps stop hackers from getting access to the webcam that I use for my work. Now I can get even more gigs as a freelancer and advertise that I have top security with my home computer!