Creating New Requirements for Security Certification (I21a)
Recent developments in the global cybersecurity ecosystem have led to increased security liability across both public and private sectors. When viewed from a product development perspective, challenges persist in the current certification schemes, particularly in achieving certification scale across products, portfolios, and the industry as a whole. To address these challenges effectively, it is crucial to bring certification schemes into closer alignment with the business objectives of the developers. This alignment is essential to achieve the level of impact and effectiveness in security certification that regulatory bodies envision.
During the talk, the methods and strategies that can help realize the certification scale as originally envisioned in cybersecurity regulations will be discussed and explored.