this post was submitted on 19 Dec 2024
189 points (95.7% liked)

memes

10705 readers
1969 users here now

Community rules

1. Be civilNo trolling, bigotry or other insulting / annoying behaviour

2. No politicsThis is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent repostsCheck for reposts when posting a meme, you can only repost after 1 month

4. No botsNo bots without the express approval of the mods or the admins

5. No Spam/AdsNo advertisements or spam. This is an instance rule and the only way to live.

Sister communities

founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] simplejack@lemmy.world 6 points 1 week ago* (last edited 1 week ago)

I’m a weirdo who builds compliance and auditing software for this very use case. Getting functioning hardware or software from a vendor l is one thing. You can QA whether it’s up to spec.

Vetting compliance with operational best practices is a different can of worms. You have to check compliance with random audits and investigations, and people that want to hide shit will try to work around that random checking.

All in all, it’s one of those things that probably seems simple when you’re looking at it from afar, but if you’re actually trying to do the job, you know it’s way more complicated than outsiders realize.