A good programmer is someone who always looks both ways before crossing
a one-way street. — Doug Linder
In
a time when every product is developed with an unimaginable rush to
deliver and market, how much time is really spent on security aspect
of your product? Is security a thought thru and well integrated
aspect in your application or is it really an after thought? Most of
us know what the reality is! How many of you are still following
traditional SDLC for project life cycles? Given the demand to deliver
products with no time for proper planning or testing, unless
otherwise security becomes a second nature to everyone in an
organization, it is an impossible goal to achieve decent security
across all your products.
You
may have separate Information Security team, specialized in all
security threats and tools to prevent them, you may have trained your
architects and team leads in security matters once in few years, but
the chain is only as strong as it’s weakest link! It only takes one
flaw to give your entire infrastructure on a platter to be owned.
No comments:
Post a Comment