IMHO, An experienced manager from another field (such as Administrative) could be a good ITSEC Manager, but the one who had a techie field exp that improved the admininstrative/people skills during time could be a great one!
The one who will not be fooled by techies or suppliers as well as be seen as a point of reference of knowledge.

Congrats Adriano.

The best management material I’ve seen are the people that understand the depth of the ISO 27000 series standard and how much more it is then just technology. Sure, probably about 60% of the material is related to the technology, but that isn’t because it is the most important only that it is the most complicated! Look at the standard and understand how people, facilities, services, and environmental aspects fit into the total security package. Know how to handle risk management (not just risk assessment) and how to handle risk through acceptance, transference, transformation, and avoidance as well as mitigation … unfortunately the “too technical” folks only thing about mitigation!

This was a well written article that mirrors my own experience with moving through engineering to management. I think the point that MD was trying to make is that many organizations require management to be part of the technical team as well, being a senior engineer as well as having to take on the responsibilities of dealing with Human Resources, career development / mentoring, etc.

Good read, thanks!

Hands-down to your point about the higher you get in the ladder the less technical your functions become(for the most part). In addition to that, someone ends up spending more hours dealing w/ more pressure and crucial responsibilities. Thus, I am getting to phase where it makes more sense to have my own business(as you mentioned) as least whatever effort/energy you dedicate it’ll impact your business directly rather than someone else.
Keep up the good work w/ posting security articles and btw I am big Brazil soccer fan and will definitely cheer for Brazil in 2010 WC