In very tight regulated profession where you will be legally responsible for the code you write and may end-up in jail.
I work in the security space and even before that I seen that developers and business don’t put security as a first class citizen, instead is almost always an after thought.
How many software is out there that security is an opt-out? I mean the software is released with tight security controls in place and then you need to learn how to opt-out from them.
Changing the mindset of developers and business about security is very hard, and more often then not I get a lot of resistance and downplay for whatever I try to educate people on. They came back with a lot of different excuses and business/developers rationals about trade-offs and risk assessments, but all this reasons fly out of the window when they have a security incident.
So, the question is not if it will happen, but when will happen… software development will be strongly regulated by law, and you may end-up in jail because some code you wrote.
See this talk from Uncle Bob that touches the subject:
