I guess what I'm saying is... what if there were a way to get executives to care about security and compliance *before* a breach happens. Some kind of process where you assess risks and build protective controls...

Too bad the software industry never developed such a process.

@gudenau true. Much cheaper to wait until a breach happens and remediate it and buy back user and regulator trust... 🙄


This is the frustration I was experiencing before I became a consultant.

Sign in to participate in the conversation
Mastodon for Tech Folks

This Mastodon instance is for people interested in technology. Discussions aren't limited to technology, because tech folks shouldn't be limited to technology either!