Excellent post! Certainly shows the division of user types within the "security industry".

I was wondering if you could clarify the "grey hat" user. My understanding was someone who is a white hat but accepts or does activities occassionally that a black hat might, e.g., takes software home that belongs to the company and make copies or put backdoors on systems they are supposed to monitor.