SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Outsourcing Security


Outsourcing Security

Author
Message
Steve Jones
Steve Jones
SSC Guru
SSC Guru (146K reputation)SSC Guru (146K reputation)SSC Guru (146K reputation)SSC Guru (146K reputation)SSC Guru (146K reputation)SSC Guru (146K reputation)SSC Guru (146K reputation)SSC Guru (146K reputation)

Group: Administrators
Points: 146745 Visits: 19434
Comments posted to this topic are about the item Outsourcing Security

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Stephanie J Brown
Stephanie J Brown
Ten Centuries
Ten Centuries (1.3K reputation)Ten Centuries (1.3K reputation)Ten Centuries (1.3K reputation)Ten Centuries (1.3K reputation)Ten Centuries (1.3K reputation)Ten Centuries (1.3K reputation)Ten Centuries (1.3K reputation)Ten Centuries (1.3K reputation)

Group: General Forum Members
Points: 1270 Visits: 1103
In some ways we outsource security already by relying on software from Webroot, Symantec, McAfee and others to protect our PCs from viruses and other nastiness. Outsourcing data security is just another step along that path, albeit one that requires more interaction than just passively accepting updates to a virus database.

I agree that communication skills will be essential. I also think a certain level of security knowledge will still be required in order to apply those communication skills and have the necessary conversations with the outsource provider, and also to help guide the security scope and / or put security audits in place.

Another example of the job not going away, just changing at the detail level... Hehe


Here there be dragons...,

Steph Brown
bitbucket-25253
bitbucket-25253
SSCoach
SSCoach (15K reputation)SSCoach (15K reputation)SSCoach (15K reputation)SSCoach (15K reputation)SSCoach (15K reputation)SSCoach (15K reputation)SSCoach (15K reputation)SSCoach (15K reputation)

Group: General Forum Members
Points: 15795 Visits: 25280
I wonder who is responsible for checking the checkers .... what if the rogue individual works for the security firm. He/she becomes aware of a fault in the system and then executes same, BEFORE others in the firm can amend the code / test the new code/create an update/Upload the update to all its customers.

It becomes a never ending circle, it goes back to the old saying "trust no one not ever yourself"

If everything seems to be going well, you have obviously overlooked something.

Ron

Please help us, help you -before posting a question please read

Before posting a performance problem please read
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum

































































































































































SQLServerCentral


Search