@polotek makes sense. Security and safety have a good regulatory fit. But sometimes it just comes down to, “Will this cost the company a bunch of money?”, which is just a management function.
Posts
-
This is the kind of thing I think about whenever people say "managers should trust engineers and leave them alone to do their work".https://arstechnica.com/security/2024/09/meta-slapped-with-101-million-fine-for-storing-passwords-in-plaintext/ -
This is the kind of thing I think about whenever people say "managers should trust engineers and leave them alone to do their work".https://arstechnica.com/security/2024/09/meta-slapped-with-101-million-fine-for-storing-passwords-in-plaintext/@polotek this sounds like what’s historically meant by “professional” — someone legally recognized as an expert, who also has some legal culpability. Do you have an opinion on professional software engineering?