Kirk Lawrence, program manager for the Secure by Design initiative at the Cybersecurity and Infrastructure Security Agency, said implementing Secure by Design principles is the first step in building a threat-resilient digital environment, Nextgov/FCW reported Friday.
“It doesn’t mean that your place can’t get broken into, that someone can’t come steal your stuff, but they [have] to work a little harder now to have a different set of skills,” Lawrence said. “Secure by Design is not the end of risk. It’s the start of resilience.”
Table of Contents
Gaining Executive Buy-In for Secure by Design
The CISA official also cited the agency’s effort to highlight Secure by Design’s business benefits. He said the key mission is to develop talking points for a tech project owner to discuss the value of Secure by Design with C-level executives to gain the latter’s support.
“One of the key principles that we’ve advocated since the beginning is that it’s not going to happen unless you have executive buy-in, which is one of the very first steps to having effective Secure by Design,” Lawrence said at a cybersecurity conference.
CISA’s Secure by Design Initiatives
In May 2024, CISA and its counterparts in Australia, New Zealand, Canada and the U.K. issued guidance on Secure by Design considerations that manufacturers and organizations could use to inform their decisions when purchasing digital products and services.
CISA also announced last year that 68 software manufacturers and technology firms participated in the agency’s Secure by Design pledge.
In August 2024, CISA and the FBI released a guide to help customers ensure that the Secure by Design concept is a core consideration in software procurement.
Related Articles
The Senate on Thursday confirmed by voice vote Lt. Gen. Shawn Bratton as the U.S. Space Force’s vice chief of space operations. According to a congressional notice, Bratton, who was nominated to the role in mid-July, will also be promoted to the rank of general. With his confirmation, Bratton replaces Gen. Michael Guetlein, who was named program manager for the Trump administration’s Golden Dome missile defense shield initiative. The GovCon Golden Dome conversation will be in full force at the 2025 Navy Summit in the lunch panel: “Supporting the Shield: Navy’s Role in the Golden Dome Architecture.” This industry-focused panel
Katie Arrington, a previous Wash100 awardee who currently performs the duties of the Department of Defense’s chief information officer, has released a memorandum to help DOD better manage risks facing its information and communications technology supply chain. In the June 5 memo, Arrington said she called for an update of the Requirements for the Acquisition of Digital Capabilities Guidebook concurrent with the Software Fast-Track, or SWFT, initiative development timeline. DOD Software Fast-Track Initiative In April, the acting CIO directed the establishment of the SWFT initiative to advance DOD’s adoption of best practices to transform the way it acquires, tests, authorizes
The Senate voted on Saturday 50-45 to confirm Paige Hallen Hanson as the next U.S. Environmental Protection Agency new chief financial officer. In her role, Hanson will manage EPA’s almost $100 billion allocation and its financial and resource management systems, the agency said in a Monday press release. Commenting on her appointment, Hanson said she was grateful to lead the EPA’s financial operations. “From budgeting to payments, performance measures to financial technology, the work of this talented team enables the critical mission EPA plays in protecting human health and the environment,” she remarked. Who Is Paige Hallen Hanson? Before her