In an era of complex, hybrid infrastructures, strengthening a company’s defences is crucial for IT security. But what does cyber resilience mean and how can companies become cyber resilient?
Text: Andreas Heer, Pictures: Swisscom
May 15, 2023
This is used as a basis to determine the necessary protection measures. There is now a greater focus on security within lifecycle management. “Security by design” describes measures implemented during the early phases of software development or procurement. “Shift left” and DevSecOps are key concepts or approaches for incorporating security aspects at an early stage of software development.
Since “log4shell”, there has been a greater focus on the supply chain. According to Duilio Hochstrasser, there needs to be transparency about the libraries used in order to reduce the risk of supply chain attacks. He adds, “Companies are demanding greater transparency from suppliers. Security has become a selling point.” Knowing whether your own software is affected by a newly discovered vulnerability in a library will significantly simplify the decisions around protective measures.