CISA's Secure by Design Pledge Continues to Build Momentum: Is it Basic? Maybe, but it's a Start
theCUBEresearch, Wednesday, May 15th, 2024
CISA's Secure by Design Pledge is a voluntary pledge that enterprise software vendors make in a good-faith effort to set and attain certain security-focused goals, the most fundamental of which is to build cybersecurity into the design and manufacture of tech products.
This pledge includes on-prem software, cloud services, and Software-as-a-Service (SaaS), in addition to enterprise software products and services. I read an article from Dark Reading calling the pledge toothless and basic, but the reality is that it's a start. In my view, a much-needed effort to make security foundational as a part of product development.