alt Hacker NewsIt's Signal's job to prioritize safety/privacy/security over all other concerns, and the job of an enterprise IT operation to manage risk. Underrated how different those jobs --- security and risk management --- are!
Most normal people probably wouldn't enjoy working in a shop where Signal owned the risk management function, and IT/dev had to fall in line. But for the work Signal does, their near-absolutist stance makes a lot of sense.
That's an interesting take, but it sounds like you're downplaying the actual risks of enterprise users running agents on their desktop(?).
What would your say would be a prudent posture an IT manager should take to control risk to the organisation?