1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Want better security? Stop calling it research

Discussion in 'CSO' started by RSS, Feb 16, 2016.

  1. RSS

    RSS New Member Member

    The way we advocate for better security impacts our success.

    What happens if you suggest your organization subject itself to security research? What sort of reaction do you think you’ll get? Better, how would you define and explain it? Why?

    Contrast that to suggesting you enhance existing processes with stronger security measures -- tailored to the needs of the organization. It’s a stronger approach. It leads to better integration of security. Imagine actually including security sooner in the process?


    James Jardine (LinkedIn, @jardinesoftware) of Jardine Software penned a post last week laying out the difference (read it here). His take on the distinction between security research and testing lays out our opportunity. In fact, I see it as a way to speed up support for security research and other programs aimed at making it better for all of us.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page