Home

Have you ever "whitewashed" a real security risk?

Have you ever "whitewashed" a real security risk?

Top Comment: Never. View poll results (819 responses)

1948 views
819 responses
0 upvotes
Yes, on my own17%
Yes, because I was asked18%
No, but I have been asked37%
No, and never been asked29%
Related Tags
Anonymous Author
Never
2 upvotes
Anonymous Author
Never. If we are serious about security, there is no need to do this. It's about solving problems, not pointing fingers
2 upvotes
Anonymous Author
No, Never. When in doubt raise it to Corp InfoSec group for clarity
2 upvotes
Anonymous Author
The security risk will always be there. There are mitigating strategies and they work to reduce the impact or the likelihood. When we are given resources to mitigate the risk, or assured, we can whitewash the risk. It is not that I have done it but as a hypothesis, it can happen.
2 upvotes
Anonymous Author
At some point I have been instructed to not enforce a software policy that could open the door to real risks.
2 upvotes
Anonymous Author
No.
2 upvotes
Anonymous Author
No, I have not.
2 upvotes
Anonymous Author
No
2 upvotes
Anonymous Author
No
1 upvotes
Anonymous Author
My view is that we all need to be careful of the "coaching" we may get and understand if we are being coached on how to manage the message around risks to other so a productive discussion can occur or is someone "coaching" to massage the message to "white wash it" or "water it down" so it doesn't appear so bad ...  I have had both experiences
1 upvotes
Anonymous Author
WOW - 76% have either white washed risk or have been asked to ...
1 upvotes
Anonymous Author
How should you respond when asked to white-wash a security risk?  How does the CISO protect themselves from unfairly taking the blame and being held liable?  check out:  https://www.pulse.qa/post/how-respond-asked-to-white-wash-security-risk-how-ciso-protect-themselves-unfairly-taking-blame-being-held-liable
1 upvotes
Anonymous Author
No
1 upvotes
Anonymous Author
no
1 upvotes
Anonymous Author
this is a dangerous territory.  Make sure you check in with your self ethic dept.
0 upvotes
Anonymous Author
Whitewashing anything is a huge no-no, especially security or safety items.
0 upvotes