If you had to redesign your security architecture from scratch, what's your first step?

1.8k views5 Comments

CTO in Software, 11 - 50 employees
Implementing a proper Identity & Access Management solution rooted in Zero Trust
Vice President of Software Development in Finance (non-banking), 1,001 - 5,000 employees
Define what good looks like
CIO in Services (non-Government), 201 - 500 employees
Start by making sure that everything is encrypted end-to-end.  Go to zero trust access management, make sure you use micro architecture and segmentation, use a state of the art WAF and API firewall.  Regularly audit who has privileged access, and remove all those that do not need it, then use selective PAM to allow access for a specified amount of time or per project.

Use best practices for code hygiene, audit your infrastructure, tools and codebase for deprecated and unnecessary packages and outdated tools.

If you have regulatory compliance issues, use the best tools you can find and practise constant compliance.

That would be a good start.

CIO in Education, 1,001 - 5,000 employees
1) Security assessment so I understand my landscape
2) Likely follow the others will a model based in Zero Trust across the board.
Senior Information Security Manager in Software, 501 - 1,000 employees
Go 100% cloud-based.


Content you might like

Important solution for today’s way of working52%

Interesting idea to explore for 202242%

Not necessary6%


980 views1 Upvote1 Comment

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
39.9k views130 Upvotes318 Comments