<p>I’ve long felt that if the software engineering world realized:</p><p>1) how accessible cybersecurity actually is in terms of an understanding of what matters in practice</p><p>2) how dreadfully behind the cybersecurity industry is in terms of basic practices, understanding of systems, etc. </p><p>immense outrage would foment at large, and perhaps real change demanded</p><p>there’s a reason why infosec pros present the problems as arcane and inaccessible, why they protect their own and knit tight cliques…</p>