Summary: The video discusses the concept of “secure by design” in software development, exploring whether teams should focus on their own software or the supply chain when implementing security measures. It highlights the importance of considering security from the initial stages of a project, as well as the role of supply chain management in developing secure software.
Keypoints:
- Secure by design involves integrating security into the software development process from the beginning.
- There is a debate on whether to start with the software being developed or the supply chain that supports it.
- The supply chain considerations include both open-source components and the management of deliverables within the organization.
- Timing is crucial; ideally, security should be a consideration from day zero in greenfield projects.
- The maturity of the organization can influence when security concerns are addressed in the project lifecycle.
Youtube Video: https://www.youtube.com/watch?v=h3A7L6CNFd8
Youtube Channel: Security Weekly – A CRA Resource
Video Published: Wed, 23 Apr 2025 21:00:52 +0000