You guys that runs a (public) service today, how frequently do you see attempts to exploit your service ?
How do you work with security, do you have any daily checklists or any other process that helps you keep uptodate on software updates, threats etc ?
