Whose job is more difficult?

Security & GRCSoftware Development

Security Engineer82%

Software Developer17%

149 PARTICIPANTS
1.4k viewscircle icon1 Comment
Sort by:
Senior Enterprise Architect, Application Consulting in Healthcare and Biotech3 years ago

I would have preferred to answer "It depends". 

Content you might like

Seeking input: Has anyone drafted an SOW for a cloud-based SIEM with setup, migration, and maintenance? I’m working on a FedRAMP-authorized SIEM SOW, migrating from on-prem Splunk, covering data, searches, alerts, dashboards, and models. 
Scope includes Environment Setup: 
Cloud provisioning, configuration, testing.
Connectors/Parsers: Custom data source integration.
Content Development: Rules, use cases, threat feeds.
Performance Tuning: Query/index optimization.
Runbooks: Operational procedures.

Also required: 24x7 support, maintenance, lifecycle and application management, role-based training, and documentation. 
Must comply with NIST SP 800-53, CJIS, and FedRAMP Moderate+. Goal: Secure, scalable SIEM for rapid deployment. I may be missing elements, so suggestions are welcome. Please share redacted SOWs or tips if possible.

How necessary do you think it is for IT to involve HR in AI discussions? How do you start these conversations while establishing clear responsibilities?

Read More Comments

How frequently do you meet with your Board?

Annually13%

Quarterly58%

Monthly15%

No regular meetings12%

Other1%

View Results

Has anyone been successful in implementing a FinOps Cost Optimization policy to turn down idle cloud instances during off hours (nights/weekends)?  DId you start with non-prod environments?  How are you handling logging/monitoring alerts during that time?

Read More Comments

What cyber threat are you most concerned about?

Insider threats – rogue admins37%

Encrypting my data39%

Deleting my backup copies13%

Resident malware5%

Data theft – data exfiltration5%

Other

View Results