Quote:
In the many years that I worked in a variety of businesses my experience is that managers don't care about security. Managers don't care about the consequences of security breaches. Managers live each day by the probability that nothing bad will happen on their watch so they don't want to hear about proactive resolution of security weaknesses. I have worked in many businesses as a contract employee so I've met a lot of business managers. I've never met one that had the least interest in the best interest of the business or in the best interest of the business' customers.
|
You are sooooooooo right about this. And it isn't just middle managers, it extends all the way up into most C-suites. Why? Because so many of them are paid/evaluated by quarterly results, and security absolutely never figures into that. As long as those quarterly revenue expectations are met, everything is hunky-dory.