The pitfalls of neglecting security ownership at the design stage

2023-09-27 04:00

In this Help Net Security interview, Nima Baiati, Executive Director and GM, Commercial Cybersecurity Solutions at Lenovo, discusses the disconnect between development and security teams and how companies need to prioritize security and why utilizing a multi-layered strategy is the best way to secure above and below the OS. There is a disconnect between development and security teams regarding security ownership at the design stage.

Without clear ownership of security during the design stage, many problems can quickly arise.

Planning activity should include defining security requirements when products are first being conceived in order to balance needs of security and data availability.

Once the security requirements are documented, product development teams can establish plans to incorporate appropriate features in the new products.

The good news is there is a growing supply of third-party vendors that can provide a broad range of solutions endpoint security, asset management, and network security.

Security should be tied to strategy, more organizations are moving away from procuring security solutions by pre-defined, often entrenched purchasing criteria, and moving towards an approach based on the value of security to organizations and their go-to-market models.

News URL

https://www.helpnetsecurity.com/2023/09/27/nima-baiati-lenovo-design-security/

#security