Related Posts
Give me an example of “chaos is a ladder"
Anyone gone from PA to CBRE ? Do you like it ?
Is optum global solutions a service based company i know it is captive of UHG but is the work done is similar to other service based companies like TCS, Infosys , Wipro etc..? And is there any concept on strict timings with check in and checkout time or is it flexible??
Tata Consultancy @optum
Hi, I am new to Canada and currently living in Vancouver, BC. I was looking for opportunities in the Financial Services industry in the Metro Vancouver Area. I have about 3 years of experience in the Banking/Financial Services and HealthTech industry and worked alongside IBM and PwC in developing and implementing cutting-edge FinTech products for business clients of a Financial Institution and led the Finance and data science team at a Health tech startup. Let me know if anyone can help me.
Additional Posts in Risk Assurance
Hello - hope everyone is having a great weekend. I'm looking into risk assurance opportunities at Meta, especially Application Manager, Controls (min 5 YOE) and Manager, Compliance (min 12 YOE). I am a Senior Manager with 9 years of IT risks assurance experience. Does anyone have any thought on which position I should apply? If anyone currently at Meta could share your experience, that would also help. If anyone is open to providing referrals, I could provide my background. Facebook (Meta)
New to Fishbowl?
unlock all discussions on Fishbowl.



I think this will be done during the design. Security design will be prepared then but will depend on the scale and complexity of the project. Most of the time, project teams follow their own version if SDLC, so you will have to use judgement as to what could be the best stage to consider security design.
The earlier the better
Before SIT/UAT
Shortly after requirements mapping and architecture. Once you know what the system needs to do and how you want to do it, design the roles to follow/adhere to that process.