If you’re faced with the tradeoff between security and another priority, your answer is clear: Do security. In some cases, this will mean prioritizing security above other things we do, such as releasing new features or providing ongoing support for legacy systems.
I respect this. I'd be very happy if my boss told me this and I would feel empowered to build great products. I hope this sentiment spreads through the industry.
I really wish my parents would have asked me before doing that.