|
|
|
|
|
|
by leonadato
654 days ago
|
|
|
and the problem there (as I see it) is that they don't care about security, they care about passing their audit. "Passing our audit" has been presented with measurable consequences (cannot sell to customers) and finite, well-defined actions (this is what the audit list looks like). What I'd like (the goal of the follow up article, coming soon) is to present the value of security in a way that makes the justification of the effort viable and palatable. |
|
|