The AppSec Blame Game – Part 2: It’s Time for Software Development to Get Rugged. We need a word to describe an organization that reliably produces secure software – let’s call it “rugged” Rugged is NOT the same as “secure” Secure is a possible state of affairs at a certain point in time, but rugged describes staying ahead of the threat over time. Rugged organizations create secure code as a byproduct of their culture. You become rugged as you run the gauntlet, instrument your organization and your code, constantly experiment to see if anything breaks.”]
Source: https://www.cuinfosecurity.com/blogs/appsec-blame-game-part-2-p-1336