Re: I disagree
I agree. Insurance companies charging extra for poor security is a good thing, as above, it may actually get the C-suites to reduce their rectal-cranial inversions.
However, mandating certain brands for the discount seems awfully prone to back-handers, overlooking niche players, and a ramping up of the inverse-hammer fallacy (Hammer Fallacy: If all you have is a hammer, every problem looks like a nail; Inverted: If we don't have the solution, it is obviously not a problem.). EG: Getting a Cisco Firewall approved instead of <OtherBrand> that has features that are needed for the site, thus reducing security and effectiveness.