Sometimes it feels like your company’s Security team seems to push its way into everything — Do you want to implement a new feature, change an API? Not without security’s blessing, right? It can feel like your security team just complicates everything — and did you even really want their protection in the first place? Who are these guys to come in and force you to do things their way?
When you frame it like this, your InfoSec team sure does sound like the mafia. But here’s the big difference: we’re not adding all of these processes and overhead for our benefit — we’d be just as happy if you could secure everything on your own...
Let me keep it simple:
We are responsible for protecting your application’s users and your business’ customers, that is why we do what we do.
Still don’t believe me? Continue reading the full article over at Medium and let me see if I can change your mind.
Preview of security puns you will enjoy:
- There may come a time when Security asks you for a favor…
- "sleeping with the phishes"
Posted on by:
Read Next
Password max length limits are dumb (but we need them)
Mitch Pomery (he/him) -
Pushing Left, Like a Boss — Part 5.11 — Authorization (AuthZ)
Tanya Janca -
How to write super-uber-mega secure, sql-injection bullet-proof PostgreSQL queries
vbilopav -
Discussion