In terms of getting yourself taken seriously, if you feel that your immediate line manager is not listening, it may be time to get political, and go to his boss with your concerns. At the same time, you need to pitch your argument in business terms - somebody could ruin our site! How much would the legal fees cost us? It is worth laying on the paranoia with a trowel.
Also, this is one of the rare instances when the auditor is your friend. Suggest an external security audit of the site. By the way, this work can be quite fun - I know of a few Perlmonks who do this kind of work.
Update:
It seems that iza is following a piece of advice that I decided not to put on my original reply, and gone to look for another job. Good on you iza++.
Your present employers sound a bad outfit to work for, and will probably go out of business when someone trashes their database, or when their clients sue the pants off them. However, I would advise against doing any damage to their system before you leave - they seem quite capable of doing this for themselves!
Good luck with the job hunting. And if you find yourself out of work, you could always try freelancing as a security consultant ;-).
In reply to Re: how could i make "them" understand that security IS important ?
by rinceWind
in thread how could i make "them" understand that security IS important ?
by iza
| For: | Use: | ||
| & | & | ||
| < | < | ||
| > | > | ||
| [ | [ | ||
| ] | ] |