Oddbean new post about | logout
Tom Morris | 1 years ago (raw) | export | reply | flag 
 “What’s the worse that could happen?” is a conversation every software professional should be having with business leaders frequently. If they wanna do something risky as fuck, leave a paper trail and CC in legal.

The only reason there aren’t 10x the number of these shitshows is because of technical folk being super paranoid and pushing against a managerial structure who either don’t know or don’t care about the risks and consequences.

https://www.bleepingcomputer.com/news/security/genetics-firm-23andme-says-user-data-stolen-in-credential-stuffing-attack/
Tom Morris | 1 years ago (raw) | root | parent | reply | flag 
 A doctor’s first duty is to the patient. They owe duties to others too (employers, the public interest, regulators, wider public health etc.) but the patient must be the first priority. Public servants have to abide by the Nolan Principles.

How about the radical suggestion that “keeping users (and the wider public) safe from harm MUST take priority over satisfying our employers/clients”? Professional self-respect and trust starts with some substantive ethical commitment.