Microsoft Invests $1 Billion In 'Holistic' Security Strategy

ancientribe writes: Microsoft has invested $1 billion over the past year in security and doubled its number of security executives, according to company's CISO Bret Arsenault. In an address today (webcast), CEO Satya Nadella officially announced the launch of a new managed security services group and a new cyber defense operations center — all part of its new strategy of holistic and integrated security across its products and services. Microsoft execs rarely detail the company's strategy so publicly, so that in itself underlines how security is a major element in its strategy.

Phone calls from MS

[fhage]

Hi! I'm an Executive at the Microsoft Cyber Defense Operations Center, and we've detected a problem with your internet....

Re:One set to create the problem, one set to solve

[parkinglot777]

Hmm... I thought "executives" mean more people pointing fingers to others instead of do the coding???

I feel old (because I am - sigh)

[frnic]

But, I find it hard to imagine the amount of polished code that could be created for $1,000,000,000.

I guess because the code executes so much faster today, it costs more to create and debug it?

Re:I feel old (because I am - sigh)

[gweihir]

No, no, they have not spent that money on _code_. They have spent it on _executives_! You know, clueless people with big egos that earn a lot of money and prevent engineers from doing a good job.

Doubling the number of executives 1/x^2

[exabrial]

Applying the inverse square law... means 1/4 of the productivity.

Re:One set to create the problem, one set to solve

[xxxJonBoyxxx]

>> Isn't that precisely what companies are doing with security bug bounty programs?

No, that's called "outsourcing QA"

We're at "holistic"

[Opportunist]

Wake me when we get to crystal healing.

Anything's better than the prior approach ...

[tlambert]

Anything's better than the prior approach, which was homeopathic.