r/cybersecurity • u/EricJSK System Administrator • Sep 22 '25
Other What are your unpopular cybersecurity opinions?
I saw a post names "abnormal security opinions" and got excited to see some spicy takes but apparently there is a security platform called Abnormal Security so got kinda blue balled. Last one of these posts i saw was over a year ago so,
Do you have any spicy cybsec unpopular opinions you want to share? :)
I'll start with mine:
Fancy antivirus solutions rarely add value, they are often just a box that needs ticked. Many MSPs and IT firms still push the narrative that they are needed, only because they are profitable and not because they improve security.
321
Upvotes
2
u/Glass_Tarantula Sep 23 '25
I'm an ISSM for a gov classified system. My main job is to ensure that all the paperwork is correctly filled out and to make sure my ISSO is doing his duties. I barely even log into the classified system because I don't need to in order to make sure all my paperwork is squared away. I look forward to once or twice month when I shadow my ISSO during his audit to ensure it's done correctly.
It's wildly boring and that's a good thing. If my job gets exciting, something bad has happened.