Link: Every Microsoft employee is now being judged on their security work

Earlier this year, Microsoft announced it would make security its top priority, responding to years of security issues and criticism. Starting today, the company is linking its security efforts to employee performance reviews. Kathleen Hogan, Microsoft's chief people officer, outlined these expectations in an internal memo. "Everyone at Microsoft will have security as a Core Priority," Hogan stated. A lack of focus on security could affect promotions, salary increases, and bonuses. Security is now a key priority alongside diversity and inclusion, and both must be part of performance conversations, called "Connect," between employees and their managers.

Microsoft employees must demonstrate impactful security changes, with technical staff incorporating security into product design from the start. All employees are expected to use the Connect tool for performance reviews, including executives. The company is also ending support for Basic Authentication for Outlook personal accounts in September and removing the light version of the Outlook web app in August, impacting how users access their email accounts.

In her memo, Hogan emphasized the importance of security for Microsoft’s mission-critical infrastructure, noting that everyone at the company has a role in protecting customers and the company from cyber threats. The new Security Core Priority is not a compliance exercise but a commitment to prioritize security and recognize contributions. As Microsoft celebrates its 50th year, Hogan highlighted the need to continue earning customer trust daily. She thanked employees for their commitment to the Security Core Priority, which will help protect Microsoft, its customers, and its partners.

 #

--

Yoooo, this is a quick note on a link that made me go, WTF? Find all past links here.