Cybersecurity is experiencing an increase in compliance initiatives, including the Digital Operational Resilience Act (DORA) in the EU. Companies are reminded, however, not to prioritize compliance over quality assurance in cybersecurity practices, citing the example of the Ford Pinto where compliance led to overlooked safety flaws. Standard certifications and independent validation of cybersecurity providers, such as CREST, can ensure quality and build client confidence.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
