IBM recently shed some light on its internal security processes with the release of a “Redbook” document. IBM tailors security education to different roles within the development process. IBM also includes some details on how it manages the security of its vast supply chain. CIOs and CISOs can use this document as a baseline standard for measuring security of other IT vendors. Strong security must be “baked in” rather than “bolted on” to IT, says John Defterios.”]