jawn/InfoSec notes (shared)

## InfoSec notes (shared)
Expectations regarding Information Security?
* Reply to emails.
* Inform & teach infosec concepts (confidentiality, integrity, and availability, etc)
* Review, improve and simplify existing policies based on feedback and current security recommendations
  * Example: use modern password policy

* Support the org to apply infosec internally.
* Help the product/project org
   * to apply infosec in all created/installed software
   * to integrated security checking in the continuous delivery processes. Example: checking for insecure software packages that have an update.
* Periodically review installed software landscape on servers and flag needed updates.
	Expectations regarding Information Security?
	* Reply to emails.
	* Inform & teach infosec concepts (confidentiality, integrity, and availability, etc)
	* Review, improve and simplify existing policies based on feedback and current security recommendations
	* Example: use modern password policy

	* Support the org to apply infosec internally.
	* Help the product/project org
	* to apply infosec in all created/installed software
	* to integrated security checking in the continuous delivery processes. Example: checking for insecure software packages that have an update.
	* Periodically review installed software landscape on servers and flag needed updates.