CISA Encourages Organizations to Adopt a 'Secure by Demand' Strategy
Infosecurity Magazine
|
Contributed by: Drex DeFord
Summary
The US Cybersecurity and Infrastructure Security Agency (CISA) has launched the "Secure by Design" initiative in 2023, now urging software consumers to adopt a "Secure by Demand" approach. CISA Director Jen Easterly emphasized at Black Hat USA the role of organizations in promoting Secure by Demand by using their purchasing power to prioritize software security. A new Secure by Demand Guide provides questions and resources to help organizations evaluate the cybersecurity practices of software manufacturers. In May, a Secure by Design pledge was introduced, with nearly 200 software manufacturers committing to improved security practices. CISA is actively tracking and promoting the progress of these manufacturers to reduce vulnerabilities and improve security across the technology ecosystem.