1. Contracting
    1. General
      1. Brexit
    2. Business / Contracts
      1. Coronavirus Assistance
    3. Accounting / Legal
      1. Umbrella Companies
      2. HMRC Scheme Enquiries
      3. The Future of Contracting
      4. IR35 Reform
    4. Technical
    5. Welcome / FAQs
  2. Social
    1. Light Relief
    2. Social / Events
  • Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

Informing mgt their security is leakier than Luisa Zissman's fanny rag

Collapse
X
21 to 25 of 25 Previous 1 2 3 template Next
Collapse
Reply to Thread
  •  
  • Filter
  • Time
  • Show
Clear All
new posts
21 to 25 of 25 Previous 1 2 3 template Next
    #21
    The answer should be report it up the food chain and carry on billing however there is the usual politics and blame culture to handle in the senior management team. So you need to balance the email so that you don't get your manager/client shot. If is was me I would draft the email warts and all then send it to the manager that owns the responsibility and ask him to help you phrase it for his bosses consumption. then work on the draft together till they are us happy that you have not screwed them that way they get to take the credit for working with you to identify the issues and raise their game rather than becoming a C-levels Lunch for fun.

    Most businesses that have these issues, have them because the C-Levels don't see a need to care about it or rather are more interested in other pressures than firewalls and bad coding.

    Comment

      #22
      You could always just be nice and go ahead and fix the problem for them and tell no one. Of course, you wouldnt get any recognition, extension and most likely be fired for working on an unauthorised project/system but it would solve the problem of "As a professional in my field of work, do I or don't I write an email or should I first grow a pair"
      The proud owner of 125 Xeno Geek Points

      Comment

        #23
        Originally posted by northernladuk View Post
        Snorted my coffee reading this one!

        That was the cleaned up version as well.....
        I'm sorry, but I'll make no apologies for this

        Pogle is awarded +5 Xeno Geek Points.
        CUK University Challenge Champions 2010
        CUK University Challenge Champions 2012

        Comment

          #24
          Is it an exploit that someone outside the organisation could attack/prove?

          If so, pass it to a security company and let them expose it.

          The you get the best of both worlds, ethical part done, but safeguarding your contract should any snidey management take a disliking to you.

          I've been reading Troy Hunt for a while, he's a security expert who "outs" companies with insecure websites

          Comment

            #25
            Originally posted by jmo21 View Post
            The you get the best of both worlds, ethical part done, but safeguarding your contract should any snidey management take a disliking to you.
            Are you mental? Making that sort of disclosure to a 3rd party without obtaining management clearance first would be sack on the spot material in any role I've ever had.
            While you're waiting, read the free novel we sent you. It's a Spanish story about a guy named 'Manual.'

            Comment

            Reply to Thread
            21 to 25 of 25 Previous 1 2 3 template Next

            Advertisers

            1. Contracting
              1. General
                1. Brexit
              2. Business / Contracts
                1. Coronavirus Assistance
              3. Accounting / Legal
                1. Umbrella Companies
                2. HMRC Scheme Enquiries
                3. The Future of Contracting
                4. IR35 Reform
              4. Technical
              5. Welcome / FAQs
            2. Social
              1. Light Relief
              2. Social / Events
            Working...
            X