What it Means to Be Secure by Design and Secure by Default
Every technology provider must take ownership at the executive level to ensure their products are both secure by design and secure by default.
What is Secure by Design?
Secure by Design products are those where the security of the customers is a core business requirement, not just a technical feature. Secure by Design principles should be implemented during the design phase of a product’s development lifecycle to dramatically reduce the number of exploitable flaws before they are introduced to the market for broad use or consumption.
What is Secure by Default?
Secure by Default products are those that are secure to use out of the box, with little to no configuration changes and are available at no additional cost, such as multi-factor authentication (MFA), gather and log evidence of potential intrusions, and control access to sensitive information.
