• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Sunshine on Java: awareness of business

 
Ranch Hand
Posts: 86
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Natalie,

How would you tackle the challenging issue
of security awareness on the business level?

Thank you,

Yvette
 
author
Posts: 17
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Yvette,
Thank you for your question! It is unfortunate, but many times business is not
interested in investing in security awareness in their employees until there is
a data breach. Once that occurs, it seems that the attitude toward security
really changes. If no breach has occurred, then the challenge is to impress
the importance of each employee to do their part to protect the business, an
angle that may work with the business owners to protect their revenue.
I hope this helps.
 
Yvette Schat
Ranch Hand
Posts: 86
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Natalie,

Thank you.

You are completely right and it gets even tougher once one starts working
on security compliance issues.

Code security is only one aspect in the myriad of possible standards, e.g.
access control, backup, logging, sanitization...

We are currently working on these things and it's a LOT of work...

Luckily enough the business was lured :-) into approving a business impact
analysis where the aspects of confidentiality, integrity and availability are
in a way quantified and 'measured'...

Kind regards,

Yvette
 
Don't get me started about those stupid light bulbs.
reply
    Bookmark Topic Watch Topic
  • New Topic