• I guess they must have some sort of security policy. If not , like you said my first job could be implementing one 🙂

    Do you have any links showing what different types of security polices one can implement in an online web application?