December 30, 2015 at 11:54 am
Steve Jones - SSC Editor (12/12/2015)
a fundamental broken concept of information technology is the lack of security practices and architectures being built into our platforms and applications from the start
Steve, that comment at the end of your editorial says it all.
The cause is, of course, short-term-ism by those who control what gets built. Accountants interested only in short term cash-flow. Board members and top executives interested only in short term share-price movements. No-one at all in any position of power interested in the medium term, lot alone the long term.
And this irresponsible attitude percolating down through the levels of management until there's no chance of doing anything right.
Tom
December 30, 2015 at 12:03 pm
Tom,
Is there a resource that rates security process in an organization and compares it to other organizations?
412-977-3526 call/text
December 30, 2015 at 12:33 pm
TomThomson (12/30/2015)
Steve Jones - SSC Editor (12/12/2015)
a fundamental broken concept of information technology is the lack of security practices and architectures being built into our platforms and applications from the startSteve, that comment at the end of your editorial says it all.
The cause is, of course, short-term-ism by those who control what gets built. Accountants interested only in short term cash-flow. Board members and top executives interested only in short term share-price movements. No-one at all in any position of power interested in the medium term, lot alone the long term.
And this irresponsible attitude percolating down through the levels of management until there's no chance of doing anything right.
I saw a quote somewhere that says that the behaviour within an organisation descends to the worst level that managers will tolerate.
December 30, 2015 at 1:11 pm
David.Poole (12/30/2015)
TomThomson (12/30/2015)
Steve Jones - SSC Editor (12/12/2015)
a fundamental broken concept of information technology is the lack of security practices and architectures being built into our platforms and applications from the startSteve, that comment at the end of your editorial says it all.
The cause is, of course, short-term-ism by those who control what gets built. Accountants interested only in short term cash-flow. Board members and top executives interested only in short term share-price movements. No-one at all in any position of power interested in the medium term, lot alone the long term.
And this irresponsible attitude percolating down through the levels of management until there's no chance of doing anything right.
I saw a quote somewhere that says that the behaviour within an organisation descends to the worst level that managers will tolerate.
Most managers away on a two week vacation probably imagine their team degenerating into a 'Lord Of The Flies' dystopia. :w00t: :crazy: :ermm:
"Do not seek to follow in the footsteps of the wise. Instead, seek what they sought." - Matsuo Basho
December 30, 2015 at 2:39 pm
robert.sterbal 56890 (12/30/2015)
Tom,Is there a resource that rates security process in an organization and compares it to other organizations?
Various firms used to rate companies, but not against any generally agreed criteria, just against their own ideas of what was best security practice. I'm not aware of any real standards against which firms could be rated - but I'm out of date on this stuff, there may be some useful ratings now.
Tom
Viewing 5 posts - 16 through 20 (of 20 total)
You must be logged in to reply to this topic. Login to reply