Secure Coding mailing list archives
How big is the market?
From: James.McGovern at thehartford.com (McGovern, James F (HTSC, IT))
Date: Tue, 24 Apr 2007 11:48:25 -0400
I just conducted a super-official study of what my peers are reading by walking a total of five aisles within a very large building. Here are a list of magazines on folks desk: - Infoworld - Java Developers Journal - Insurance & Technology - DMReview - Intelligent Enterprise - CIO - Insurance Networking News Likewise, I asked several folks as to whether they subscribe to Dr. Dobbs and the answer was zero. Interestingly enough, I also checked with other folks and there seems to be more memberships in our architecture group with the ACM over IEEE. -----Original Message----- From: Gary McGraw [mailto:gem at cigital.com] Sent: Tuesday, April 24, 2007 11:24 AM To: McGovern, James F (HTSC, IT) Cc: SC-L at securecoding.org Subject: RE: [SC-L] How big is the market? Got it. I like dr. dobbs OK. Do you see that one around? It has software security content every once in a while. What others do you think would be a good target? What do the rest of you guys think? gem company www.cigital.com podcast www.cigital.com/silverbullet blog www.cigital.com/justiceleague book www.swsec.com -----Original Message----- From: McGovern, James F (HTSC, IT) [mailto:James.McGovern at thehartford.com] Sent: Tuesday, April 24, 2007 11:17 AM To: Gary McGraw Cc: SC-L at securecoding.org Subject: RE: [SC-L] How big is the market? Gary, I do at some level agree in terms of quality of publication. My perspective though is from an large enterprise perspective whose primary business model isn't about technology and the magazines that folks do read especially in the development community. A quick informal survey tells me that absolutely zero of my peers read IEEE (note I am a subscriber). Part of the problem may be the fact that us enterprise folks are bombarded with free magazines and cannot justify spending money to subscribe to ones such as the IEEE. I am merely suggesting some diversification for folks that don't pay for magazines. -----Original Message----- From: Gary McGraw [mailto:gem at cigital.com] Sent: Tuesday, April 24, 2007 10:50 AM To: McGovern, James F (HTSC, IT) Cc: SC-L at securecoding.org Subject: RE: [SC-L] How big is the market? I'm sorry James, but I have to respectfully disagree about the vendor thing. Perhaps the tools vendors target the "information protection" people, but at Cigital we sell services to software execs (in huge companies) who are way up the food chain. Software security is small, and we need to emphasize the growth and get people interested. This goes for everyone who reads this list. To continue our impressive growth as a field, we need to continue to build. I do agree with you that people need to write more for developers (but I hope they pick better places than JDJ to publish in). Toward that end, check out the "Building Security In" department in IEEE Security & Privacy magazine <http://www.computer.org/portal/site/security/>. Also check out Brian Chess's new book "Secure Programming with Static Analysis" when it comes out in June. However, for the most part, it's critical to understand that workaday developers can't wrangle enough budget to tackle software security. BTW, I posted a reprise to the darkreading column on justice league today: http://www.cigital.com/justiceleague/ http://www.darkreading.com/document.asp?doc_id=122253&WT.svl=column1_1 All told, I am very optimistic about our field, but don't think we can rest on our laurels at all yet. gem company www.cigital.com podcast www.cigital.com/silverbullet blog www.cigital.com/justiceleague book www.swsec.com ************************************************************************ * This communication, including attachments, is for the exclusive use of addressee and may contain proprietary, confidential and/or privileged information. If you are not the intended recipient, any use, copying, disclosure, dissemination or distribution is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail, delete this communication and destroy all copies. ************************************************************************ *
Current thread:
- How big is the market? Gary McGraw (Apr 20)
- How big is the market? McGovern, James F (HTSC, IT) (Apr 23)
- <Possible follow-ups>
- How big is the market? Gary McGraw (Apr 24)
- How big is the market? McGovern, James F (HTSC, IT) (Apr 24)
- How big is the market? Gary McGraw (Apr 24)
- How big is the market? McGovern, James F (HTSC, IT) (Apr 24)
- NYC Security McGovern, James F (HTSC, IT) (Apr 24)
- Magazines McGovern, James F (HTSC, IT) (Apr 24)
- How big is the market? McGovern, James F (HTSC, IT) (Apr 24)
- How big is the market? SC-L Subscriber Dave Aronson (Apr 24)