Is CISO responsible for secure cording or it should be handled by quality fuction.
You need to be a member of CISO Platform to add comments!
Join The Community Discussion
CISO Platform
A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.
Join CISO Community Share Your Knowledge (Post A Blog)
The Insider Risk Summit (West)
- Description:
- Created by: pritha
- Tags: insider risk summit, monterey, california
CISO Cocktail Reception, San Francisco
- Description:
Are you @RSAC?
CISO Yacht Cocktail Dinner
Going to RSA Conference?
After a day of attending sessions at RSA, join us on a luxury yacht for drinks, food, and live entertainment while enjoying the stunning skyline views, cruising on San Francisco Bay.
Yacht Party…
- Created by: pritha
- Tags: san francisco, rsac, rsac2026, ciso, cocktail, yacht, invite-only
Comments
I completely agree with Dinesh.From the macro level perspective secure coding is the responsibility of the CISO but from the micro level perspective,it can be handled by the quality team.
if you mean secure coding here, then i feel this is something which should be governed by CISO. They should design the framework, polices, processes around it and should also get VA/PT and secure code review exercises conducted to gauge the health of coding practices with respect to security. Its perfectly fine to train and involve quality team but the ultimate responsibility must lie with CISO.