If you’re faced with the tradeoff between security and another priority, your answer is clear: Do security. In some cases, this will mean prioritizing security above other things we do, such as releasing new features or providing ongoing support for legacy systems.
I respect this. I’d be very happy if my boss told me this and I would feel empowered to build great products. I hope this sentiment spreads through the industry.
Eh, my boss formally tells me this, too, but then the finances never allow for security anyways. It’s easy to state something like this towards journalists and then never get it down in practice.
I’d be curious to see if this actually enforced and for how long. I see companies cutting costs on security all the time. You can’t really trust them with anything else than creating and optimizing processes to make money. I’d rather see public regulators eat their turnover until they comply.
I respect this. I’d be very happy if my boss told me this and I would feel empowered to build great products. I hope this sentiment spreads through the industry.
Eh, my boss formally tells me this, too, but then the finances never allow for security anyways. It’s easy to state something like this towards journalists and then never get it down in practice.
I’d be curious to see if this actually enforced and for how long. I see companies cutting costs on security all the time. You can’t really trust them with anything else than creating and optimizing processes to make money. I’d rather see public regulators eat their turnover until they comply.
It is. Currently I don’t have a machine where I can both install and test code.
NCIS found the best solution to security years ago.
https://youtu.be/bwUdjeu4C6A?si=7CzrM537rbadLMns
Here is an alternative Piped link(s):
https://piped.video/bwUdjeu4C6A?si=7CzrM537rbadLMns
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source; check me out at GitHub.
Sounds like they’ve been following this well… Except replace “security” with AI.