- cross-posted to:
- technology@lemmy.zip
- cross-posted to:
- technology@lemmy.zip
If you’re faced with the tradeoff between security and another priority, your answer is clear: Do security. In some cases, this will mean prioritizing security above other things we do, such as releasing new features or providing ongoing support for legacy systems.
I respect this. I’d be very happy if my boss told me this and I would feel empowered to build great products. I hope this sentiment spreads through the industry.
It is. Currently I don’t have a machine where I can both install and test code.
NCIS found the best solution to security years ago.
Incentives like this are tricky. You can reduce the numbers by fixing the problem, or by sweeping it all under the rug. Guess which is easier to do on a quarterly basis?
Seems best to do this after firing the first 2-3 levels of leadership since this whole mess was created under their watch. Maybe the next thing to do is to ask if the US government wants to so heavily depend on a company that is no longer a US entity.
Microsoft is overwhelmingly Indian contractors now. Infact much of the large legacy US tech companies have done so much offshoring I’d hardly call them US companies anymore. Are these companies really who we want to stake our national security on?
I wonder if this will actually cause an increase in the number of security vulnerabilities and breaches as there’s now a fairly obvious way for employees to penalize their bosses financially for being assholes…
That exactly it. M$ execs look at this stat and probably go “we need to make it more unsecure, for the shareholders - of course.”
They fired their testers long ago who might’ve caught that. So ya. I can totally see that happening
Security and Stability please.