You're replying to a comment by Michele Chubirka.

March 11, 2016, 15:23

While I see your point, I'm concerned about the absence of standards and frameworks as it relates to application security. As an architect, my goal is to minimize the number of "gates" for engineers. Coding frameworks assist in that effort, because it means Information Security doesn't have to perform manual code reviews all the time and software engineers don't have to spend time becoming security experts. My goal is always to bake security in so that it supports the DevOps process.

Reply To This Comment

(why do I need your e-mail?)

(Your twitter handle, if you have one.)

Type the word "coding_508": (just to make sure you're a human)

Please preview the comment before submitting to make sure it's OK.