Re: [SC-L] OWASP Publicity

2007-11-19 Thread McGovern, James F (HTSC, IT)
The vast majority of IT executives are unfamiliar with all of the principles of security, firewalls, coding, whatever. Are they unfamiliar because of background or they feel that their staff has a handle on it and therefore don't need to pay much atention to it. Both have different

Re: [SC-L] OWASP Publicity

2007-11-19 Thread James Stibbards
-752-4836 cell: 571-232-7210 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Benjamin Tomhave Sent: Sunday, November 18, 2007 10:08 AM To: Secure Coding Subject: Re: [SC-L] OWASP Publicity I agree and disagree with these comments, as I think they possibly

Re: [SC-L] OWASP Publicity

2007-11-19 Thread Benjamin Tomhave
] On Behalf Of Benjamin Tomhave Sent: Sunday, November 18, 2007 10:08 AM To: Secure Coding Subject: Re: [SC-L] OWASP Publicity I agree and disagree with these comments, as I think they possibly represent an outmoded way of thinking when it comes to IT management. Execs and senior mgmt _must_ have

Re: [SC-L] OWASP Publicity

2007-11-18 Thread Benjamin Tomhave
I agree and disagree with these comments, as I think they possibly represent an outmoded way of thinking when it comes to IT management. Execs and senior mgmt _must_ have a certain understanding of security that will at least give them a basis for making risk decisions. It seems today that they

Re: [SC-L] OWASP Publicity

2007-11-16 Thread Leichter, Jerry
| ...I've never understood why it is that managers who would never dream | of second-guessing an electrician about electrical wiring, a | construction engineer about wall bracing, a mechanic about car | repairs, will not hesitate to believe - or at least act as though they | believe - they know

Re: [SC-L] OWASP Publicity

2007-11-15 Thread Gunnar Peterson
Local boy makes good http://online.wsj.com/article/0,,SB112128453130584810,00-search.html -gp On 11/15/07 10:25 AM, McGovern, James F (HTSC, IT) [EMAIL PROTECTED] wrote: I have observed an interesting behavior in that the vast majority of IT executives still haven't heard about the

Re: [SC-L] OWASP Publicity

2007-11-15 Thread Crispin Cowan
McGovern, James F (HTSC, IT) wrote: I have observed an interesting behavior in that the vast majority of IT executives still haven't heard about the principles behind secure coding. My take says that we are publishing information in all the wrong places. IT executives don't really read ACM,

Re: [SC-L] OWASP Publicity

2007-11-15 Thread Bernie Rosen
-L] OWASP Publicity McGovern, James F (HTSC, IT) wrote: I have observed an interesting behavior in that the vast majority of IT executives still haven't heard about the principles behind secure coding. My take says that we are publishing information in all the wrong places. IT executives

Re: [SC-L] OWASP Publicity

2007-11-15 Thread Gary McGraw
, and we need to keep the good work coming. gem - Original Message - From: [EMAIL PROTECTED] [EMAIL PROTECTED] To: James McGovern [EMAIL PROTECTED]; Secure Mailing List SC-L@securecoding.org Sent: Thu Nov 15 15:46:13 2007 Subject: Re: [SC-L] OWASP Publicity Local boy makes good http