- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
awareness, quality assurance, security, techniques, implement, sans, white paper
- Abstract
- Successful companies have found a way to offer something that people want, at a price they are willing pay, in a way that will make money in the transaction. Highly successful companies offer quality products and services in this exchange, and keep the quality high, so that the customer will return the next time he/she wants to purchase. This paper discusses how quality is the responsibility of the whole organization and security is a part of the totality of quality of a system, implicit in customers' expectations. Quality should be a part of how business gets done. This includes software quality, but also encompasses everything the organization does, including protecting its assets, physical and virtual. Security, as a component of quality, must be addressed throughout an organization; in the definition of strategy, the development of policy, and the implementation and monitoring of both.