@slightlylate I worked at Wells Fargo between my stints at Google. We were subjected to stringent sec audits for everything.
-
-
-
@kkrishnanand: this is the bank that's running WinCE on ATM terminals? - 3 more replies
New conversation -
-
-
@JacoKoster: sorry mate, but even if you're knocking it out of the park, bank industry averages are pitiful, throwing shade everywhere.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@JacoKoster: and I'd love to hear more about bank secure dev practices circa '15. Mandatory code review? Static analysis in build pipeline?Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@JacoKoster: eh, I used to work for an MSSP on bank network security. ¯\_(ツ)_/¯Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@slightlylate let's make it easier for them to be good at it :) -
@dakami: eh, when I start seeing Chase and Citi underwriting security research grants I'll know they're finally serious. - 1 more reply
New conversation -
-
-
@slightlylate Here in Holland my bank's website requires a proprietary physical device USB-connected to my laptop. Annoying but...secure? -
@adrianholovaty: devil's in the details, but hats off to them for 2FA - 4 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.