Cyberthreats continue to affect small and medium-size businesses (SMBs), amounting to billions of dollars in losses annually, with the FBI’s Internet Crime Complaint Center (IC3) anticipating an increase in critical infrastructure victimization in the coming months and years. By building a diverse information security team that includes former law enforcement personnel, your MSP will be better equipped to recognize and respond to potential threats and ensure that your business and your clients’ businesses continue to operate efficiently with minimal downtime. Former law enforcement professionals can help build out security protection and response plans backed by deep-rooted experience handling high-profile cybersecurity issues, extensive training from government entities, and strong networks of like-minded individuals.
Federal agents have built their careers on real-world experience and are battle tested. With firsthand exposure to intrusions—the good, the bad, and the ugly—they understand company policies that should be implemented, tools that should be used, and immediate fixes to broken systems and processes.
Christopher Wray, director of the FBI, stresses the importance of the FBI’s relationship with private sectors. He notes that those with FBI or law enforcement backgrounds tend to have knowledge and expertise that can prove powerful in protecting companies in the private sector. Hiring security personnel with a law enforcement background can also help organizations better understand the threat landscape and better protect their clients from harm.
In addition to field experience, most federal agents possess extensive formal training and certifications. At the FBI, for example, agents working in cyber investigations or cybercrime are required to undergo training like the Cyber Investigator Certificate Program (CICP), the Cybersecurity and Infrastructure Security Agency’s (CISA) Incident Response Training curriculum, SANS Institute cybersecurity training courses, and the Mandiant Academy Cyber Security Training. This type of professional development is exclusive to those within government positions and can cost hundreds of thousands of dollars, ensuring that agents are equipped with a thorough understanding of threat actors, who they are, and how to protect against and neutralize them.
Those who have worked in cybersecurity at the government level typically build strong networks of like-minded professionals who are dedicated to keeping both public and private sectors safe from bad actors. They are connected not only within their own government agencies, but also across bureaus, worldwide governments, and other cybersecurity professionals around the globe. These professional networks can prove beneficial when hiring a former law enforcement agent, not only as you build out your own internal security team, but also as you consult outside authorities for professional guidance.