InfoSec Challenges Faced? What can be made better in Pen Test or Vuln Assessment Projects?
CTO in Software, 11 - 50 employees
Making them a continuous part of the SDLC instead of a periodic event that pisses off development due to a high number of issues that lack context and priorityCISO in Software, 201 - 500 employees
For every InfoSec theme most important is right risk assessment/management, and also i agree with @Mike Kail, making them continuous, systematic is very important for real/good outcome.Content you might like
Yes39%
Yes, but third & Nth parties are still a concern39%
Mostly16%
No4%
Don't know1%
184 PARTICIPANTS
CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.API security is our top priority8%
Very high48%
High34%
Medium9%
Low1%
API security is not at all a priority for us1%
101 PARTICIPANTS
Head of Information Security in Services (non-Government), 1,001 - 5,000 employees
You need to tell people what to expect and what not to expect from IT. We’ve tried to train people to expect that IT will do certain things or make requests which are okay to comply with, but IT will never call you out of ...read moreHead of Information Security in Services (non-Government), 1,001 - 5,000 employees
It depends on how good the solution is at addressing your security needs. I lean towards simplifying the security stack, but in some cases existing solutions just don't provide the level of security that you need. If ...read more
-Cross-team collaboration