This post builds on my previous post:
How Corporate Security Sloppiness Threatens Your Online Life and How You Can Reduce Your Risk.
A fact of life is that security is extremely hard—not for technical reasons, but for people reasons.
When I was working as an engineering manager in the computer security field, the top issue was never the security itself, but how to make things as secure as possible while keeping things usable. Endless discussions lasting hours. Security is as weak as its weakest link, and today that is almost always the people involved.
Click title to read more.