Security, Quality & Agility: Maintaining a balance!

Contributed by Rajesh Laskary The Plot:

Cybersecurity threats are evolving with every passing day and so the level of sophistication with which an attack can be planned, organized, and executed. In the past organizations have been more focused on ‘Quality’ and less on ‘Security’. Now we are witnessing a shift wherein organizations have started considering ‘Security-By-Design’ in their products or applications alongside quality while embracing the ‘agility’ of fast-paced agile software development. What we need to keep in mind is, ‘Security’, ‘Quality’ or ‘Agility’ is not just about tools and processes, it’s more about a cultural change in an organization, understanding vulnerabilities, it’s about the change in the mindset of people working for your organization to view things from a different angle.

Let’s assume a scenario (and trust me it’s omnipresent in one form or the other in every organization) before we start and let me set the background.

“ Your system/business analysts are always on their toes as the business keeps changing the requirements and there is always a never-ending discussion taking place on the scope or the priority of a business requirement and hence your development teams are also under tremendous pressure with ever-changing scope or priority of business requirements, last-minute…