Enough talk about malicious code for a minute.
I recently ran across an article about a global gathering of coders working to help disaster response and risk management.
Check out, in particular, the page on Problem Definitions. I find this to be a rather brilliant definition of some rather long-standing and ordinarily rather intractable problems in dealing with the aftermath of a disaster.
I wonder what we would define as the problems in the security industry? Could we similarly work to solve them with such a coding event?