• Blueteamsecguy@infosec.pub
    link
    fedilink
    arrow-up
    6
    ·
    7 months ago

    Please don’t.

    I have to initiate those, or it looks bad for compliance. We sell software, we get SOC 2 attestations yearly. We start getting points marked off for very general security and compliance measures customers will question our products and not renew or not purchase in the first place, because if we can’t even secure our own employees and promote awareness, what does that say about our product?

    Sincerely, the guy everyone hates and makes your work life harder.