The incident response (IR) team in your company submitted an urgent human resource request for a security analyst. The job description of a security analyst requires at least five years of work experience and the CISSP certificate. Nawwar is an experienced network engineer with ten years of experience and the Cisco Certified Network Professional certificate. The head of the IR team proposed to hire Nawwar as soon as possible. As a security professional, which of the following suggestion will you make to the Human Resources department?
A. Reject. Nawwar is incompetent.
B. Reject. The demand for the security analyst is not so urgent.
C. Accept. The IR team can conduct cross-training.
D. Accept. It’s a regular practice of job rotation.
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is A. Reject. Nawwar is incompetent.
Competency is one’s proficiency that matches the required skills.
Nawwar is an experienced network engineer, but no evidence proves that he is skilled at security analysis. Besides, he does not meet the requirement of the CISSP qualification.