Melinda Marks
It's taken me almost a year to write (and edit) my rant about categories and acronyms in cybersecurity. Which acronyms or categories annoy you the most? Security teams don't need more tools, they need efficient ways to mitigate risk and respond quickly to threats or attacks - especially now to keep up with faster development cycles.
https://www.techtarget.com/searchsecurity/opinion/Cloud-native-app-security-Ignore-acronyms-solve-problems
#cloudsecurity #applicationsecurity #appsec #cspm #sast #dast #iast #sca #sbom #ciem #asoc #dspm #aspm #cnapp #cdr #mdr #itdr #ndr #mdr #xdr #edr #cnapp #wapp #devsecops #cybersecurity #infosec #ciso #cso
Cloud-native app security? Ignore acronyms, solve problems | TechTarget

Instead of building a security strategy around lists of acronyms or categories, learn how to solve problems more efficiently.

Security
Oct 30, 2023 at 4:48pmWeb
Show threadSpliceFixer   Nov 7, 2023

@melindamarks The acronyms that annoy me most are the ones that are undefined in whatever document I happen to be reading.

There are so many acronyms in English that every 3 letter combination I have ever looked up has multiple meanings, sometimes even within a single industry. And when I start editing within a work environment, I invariably find undefined acronyms dotting the documentation landscape in a minefield of tacit agreement, which is all well and good until new people step through the door and need to learn the new language of your organisation.

It’s simple - where you don’t need to use an acronym, don’t. If you absolutely must use an acronym, don’t make a new one where an old one works. And in all instances, make certain it’s defined, both on first use (per document) and in an easily accessed glossary.