A vulnerability was disclosed this past week affecting insulin pumps made by Johnson & Johnson. The problem is caused, in large part, by the failure of product developers to include security as a part of the architecture of their products from the beginning. Security must be considered in every aspect of the product life cycle, from the initial drawings on a whiteboard, through the first and all subsequent development sprints, and through product documentation, documentation, support, training and enhancements. Security needs a champion, and developers must be designated to ensure security is considered during all phases of product development, starting with the first day of planning.”]
Source: https://www.csoonline.com/article/3131614/product-security-not-just-bells-and-whistles.html