Security Teams: Don’t Impose. Empower.
Citizen development has become ubiquitous in businesses across industries, sizes and geographies. No matter what you do in an organization, or what your company does, there’s a good chance that you work with low-code/no-code (LCNC) platforms to create your own automations, integrations and apps.
Most employees aren’t even aware that they’re part of a revolution in how businesses create their own internal structures and make things happen – but they already take for granted the added efficiency, productivity and autonomy that it brings with it.
The explosion of LCNC is fantastic in many ways, but it comes with serious challenges for security teams, who are suddenly faced with risks that appear without warning – and often under the radar – created by employees with little security awareness and no idea that they’re opening their company up to major vulnerabilities.
In this article in his regular Dark Reading column, Michael Bargury, CTO of Zenity, argues that for security teams to be able to guide their companies effectively, they need to approach LCNC security as a chance to empower employees rather than restrict them. Think guidance – not governance.