This presentation shows the urgency to adopt a proactive, pragmatic and strategic approach that considers security threats and risks from the start and not as an afterthought in the design and development of products and services in such a way as to minimise flaws that could compromise security which is called security by design perspective.  This can make the difference between those who fail and those who thrive.   

Marc addresses security by design and shows its importance in IT development projects because as a system is developed, it becomes harder and more expensive to add security afterwards.  

Marc provides a proper explanation of a rock-solid security architecture model with a focus on integration with risk management, IT and business systems.  Security by design techniques, benefits, principles and requirements are illustrated with lots of examples focusing on preventing security incidents rather than repairing the issue and restoring systems after a company has been hit by a security incident.  

Marc summarizes the responsibilities for the security controls, security configuration, the automation of security baselines, and the end-user audit of security controls for infrastructure, operating systems, services, and applications.  Finally, he shows how security by design is all about enabling trust in systems, designs and data so that organizations can take on more risk, lead change and innovate with confidence.