Secure by Design is just the start, CISA official says

A program manager for the Cybersecurity and Infrastructure Security Agency said ongoing threat vigilance is needed post-implementation of the agency’s Secure by Design framework.

Incorporating a Secure by Design framework is just the start to engineering a threat-resilient digital environment, per officials helming the initiative at the Cybersecurity and Infrastructure Security Agency.

Speaking during the Critical Effect cybersecurity conference in Washington, D.C., Kirk Lawrence, CISA’s program manager for its Secure by Design initiative, said that implementing its principles is akin to “locking the front door” when securing a house: a first step.

“It doesn't mean that your place can’t get broken into, that someone can't come steal your stuff, but they [have] to work a little harder now to have a different set of skills,” Lawrence said. “Secure by Design is not the end of risk. It's the start of resilience.”

He specified ...

Copyright of this story solely belongs to nextgov.com . To see the full text click HERE

A program manager for the Cybersecurity and Infrastructure Security Agency said ongoing threat vigilance is needed post-implementation of the agency’s Secure by Design framework.

Share:

More related news