Several security measures have already been planned by UK security software and hardware firm Sophos to achieve the seven software security goals posited by the Cybersecurity and Infrastructure Security Agency's (CISA) Secure by Design pledge, which has been signed by 67 other tech companies, SC Media reports.
Fulfillment of the Secure by Design pledge would not only entail mandatory multi-factor authentication and passkey support in the Sophos Central security console but also involve new federated MFA options, according to Sophos, which also intends to release reports regarding MFA implementation rates.
Consistent updates regarding Sophos' progress in attaining the pledge's goals would also be provided to the public.
"This is not a one-and-done initiative that CISA has created – it's a much-needed way of thinking about frameworks that should be built into the design and architecture of security solutions. We welcome constructive feedback on how we are addressing the seven pillars, said Sophos Chief Information Security Officer Ross McKerchar.
