More on this book
Community
Kindle Notes & Highlights
by
Jez Humble
“Trust, but verify”7 is a concept that is gaining acceptance in GRC circles. Instead of preventing teams from accessing environments and hardware so they can’t do anything bad, we trust people to do the right thing and give the team access and control on the systems and hardware they need to use daily. We then verify the team is not abusing their authority by developing good monitoring and frequent review processes to ensure the established boundaries are observed and there is complete visibility and transparency built into the team’s work.
Etsy’s most important architectural decision was to decouple the CDE environment from the rest of the system, limiting the scope of the PCI-DSS regulations to one segregated area and preventing them from “leaking” through to all their production systems.
Large, fully funded, bloated programs of work that deliver questionable value grind on whilst new, unanticipated opportunities drift by because there is no funding available for exploring and testing our hypotheses about them.
Time that could be spent on innovation is instead spent on managing and reporting on “the budget.”
I hate the yearly budget with a fire of a thousand suns. Anonymous
we know of one Fortune 500 company that gave bonuses to its VPs based on the number of services retired during the year, aiming to reduce system complexity and encourage innovation.
Organizations that do not have the intestinal fortitude to perform real failure injection exercises on at least an annual basis should not be in the business of developing their own infrastructure services — at least, not for mission-critical systems.
When using COTS, it is crucial not to customize the packages. We can’t emphasize strongly enough the problems and risks associated with customizing COTS.
