Survey Results

First Prev Next

Should be a multiple choice question Ravi Bhavnani8-Jan-19 9:04 Ravi Bhavnani 8-Jan-19 9:04  At my company, code reviews go through a security check (where applicable).  We also have an internal security team (made up of devs) that examines security issues that crop up during development, as well as a security team that handles the security of our deployed app.  On top of this, we use a couple of 3rd party vulnerability testing companies who perform penetration testing of our code every release. Yeah, we deal with money. /ravi My new year resolution: 2048 x 1536 Home | Articles | My .NET bits | Freeware ravib(at)ravib(dot)com The CEO matblue259-Jan-19 4:26 matblue25 9-Jan-19 4:26  The captain of a ship is always responsible. Period. Who is responsible for your team? maze38-Jan-19 1:41 maze3 8-Jan-19 1:41  Who is responsible for your team? I am. To be serious... Mehdi Gholam7-Jan-19 19:06 Mehdi Gholam 7-Jan-19 19:06  ... for a moment, responsibility is different from blame. We should be responsible but not blame any one. Also security is in layers and it is the job of everyone from first layer : code writing and not making well known failures like sql injection etc. to code reviews to hopefully catch these if written by junior devs. second layer : application design and communication protocol selection and general practices in putting things together. third layer : auditing and white hatting the apps workflow and usage by specialists (if you have the resources) Even with all these there will be a time when things go "to the fan", and in these times working towards a solution without yelling at people is the best and most productive course. Re: To be serious... Slacker0077-Jan-19 23:04 Slacker007 7-Jan-19 23:04  Stop making sense. The Oompas will get mad. Re: To be serious... Mehdi Gholam7-Jan-19 23:08 Mehdi Gholam 7-Jan-19 23:08  Sorry, total lapse of judgment Bruce Schneier David Pierson7-Jan-19 12:06 David Pierson 7-Jan-19 12:06  Why isn't Bruce Schneier one of the options? Re: Bruce Schneier Slacker0077-Jan-19 23:03 Slacker007 7-Jan-19 23:03  Exactly. Bruce is awesome. Schneier on Security[^] Hacker? Swinkaran7-Jan-19 9:30 Swinkaran 7-Jan-19 9:30  Hacker? Re: Hacker? Chris Maunder7-Jan-19 10:33 Chris Maunder 7-Jan-19 10:33  Very clever. I should have added that as an option (though it would probably be best covered by "Now that I think of it, no one") cheers Chris Maunder Oompa Loompa Ops Slacker0077-Jan-19 3:01 Slacker007 7-Jan-19 3:01  best in the business. One stop shop Mike Hankey7-Jan-19 2:38 Mike Hankey 7-Jan-19 2:38  I do it all, even security when my CRS isn't acting up! I may not be that good looking, or athletic, or funny, or talented, or smart I forgot where I was going with this but I do know I love bacon! Team? W∴ Balboos, GHB7-Jan-19 0:51 W∴ Balboos, GHB 7-Jan-19 0:51  The two of us. The regular stuff is screwed up and made ever more annoying by the CISO - but he has to do something - anything - to give the appearance of doing something. Ravings en masse^ "The difference between genius and stupidity is that genius has its limits." - Albert Einstein "If you are searching for perfection in others, then you seek disappointment. If you are seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 A big man did it and ran away. OriginalGriff6-Jan-19 19:18 OriginalGriff 6-Jan-19 19:18  Honest! Sent from my Amstrad PC 1640 Never throw anything away, Griff Bad command or file name. Bad, bad command! Sit! Stay! Staaaay... AntiTwitter: @DalekDave is now a follower! Everyone PIEBALDconsult6-Jan-19 18:03 PIEBALDconsult 6-Jan-19 18:03  So says the training material anyway. Re: Everyone Matias Lopez11-Jan-19 9:19 Matias Lopez 11-Jan-19 9:19  Hahaha!

Last Visit: 31-Dec-99 18:00     Last Update: 4-May-24 1:38 Refresh 1

General    News    Suggestion    Question    Bug    Answer    Joke    Praise    Rant    Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.