[cm2187]

I am not sure throwing more people at the problem will help. Developers need to stop making rookie mistakes. Parameterize all queries, question input coming from the client. Pretty much every major data leak was the result of someone doing something stupid like setting the permissioning to public on a repository rather than not being staffed to do it right.

[kalleboo]

> Developers need to stop making rookie mistakes

And how do you get them to do that?

You hire security engineers to do training, code reviews, internal pentesting...

[walshemj]

Experience is the way to "stop making rookie mistakes"

[cm2187]

I am afraid this is just more lipstick on the pig of a fundamental problem of the industry: the combination of 1) anyone can call himself a programmer and incompetence is widespread and 2) every company trying to maximize the data collection in the hope that will be valuable.