SOFTWARE development practices are highlighted as a way for enterprises to tackle real-life risks by embedding security from the start of projects. The article spotlights the Software Development Life Cycle (SDLC) as a framework that can be applied beyond traditional security teams, guiding organisations to plan, design, develop, deploy and maintain with security in mind.
It notes that security is increasingly a cross‑organisational concern, involving HR, IT, governance and legal, and that new hires or terminations can introduce risks if access is not managed properly. A threat profile is recommended to assess how dangerous a role can be if filled by the wrong person, with examples cited from KnowBe4 where a North Korean threat actor was hired in 2024 due to a background check issue.
The piece also discusses integrating security components into project planning and fostering better collaboration across teams, including developers who may clash with security teams, to ensure security becomes part of the workflow. March 5, 2026, marks the publication date of this perspective by Arielle Waldman.