Access your Pro+ Content below.
Microsoft's internal auditor discusses the company's IT security outlook
This article is part of the February 2003 issue of Information Security magazine
Scott Charney is a man on the move. Since his appointment last April as Microsoft's "chief security strategist," he's logged more than 185,000 miles crisscrossing the country advocating better software security. If we don't do security well, people will migrate away from us. And if we don't do security right, they should. Scott Charney, chief security strategistMicrosoft, Inc. While Charney spends a lot of time on the road, his unit--the Security Strategies Group--is charged with being the internal security auditor for Microsoft's Trustworthy Computing effort. "In an organization of 55,000 people, it's not enough to put your finger in the dam. You have to fix the dam," says Charney. Charney's team of eight acts as part internal auditor that checks code development, part SWAT team that helps business units implement security plans and part evangelist preaching the virtues of better security. "My goal is how to figure to make our products, services and infrastructures more secure," he says. The Security Strategies Group is the ...