In selecting qualified security personnel, many organizations use recognizable certifications to endow a certain level of competency associated with various security positions. Do you think this practice the best method to find the most qualified candidate? Does security clearance or prior military background make someone an ideal InfoSec job candidate?