undefined | Better HN

0 pointscassianoleal1y ago0 comments

> Even if much of that caring is box ticking rather than actually looking into the security (hello ISO27001), you’d expect it to result in generally a security conscious culture.

If the whole value is in ticking the box, why would that develop a culture that values anything more than the tick?

0 comments

antonvs1y ago

The cycle usually goes something like box ticking, complacency, security scare, remediation, rinse and repeat.

j / k navigate · click thread line to collapse

0 comments

antonvs1y ago

The cycle usually goes something like box ticking, complacency, security scare, remediation, rinse and repeat.

j / k navigate · click thread line to collapse