Hi Matthew, thank you for an interesting read.
As someone with a keen interest in Cyber security I have often found companies get the wrong balance between security and usability of a system. This often comes off the back of bolting security on at the last minute instead of making it part of the development lifecycle from the start.
Would you say that, no matter the size of the project, cyber security should be a consideration from the start in today’s world? If so what way do you envisage this happening? Something like a new position on all teams, say a Security Consultant, to work alongside the Team Lead/ Project Manager or should it be done by an external party such as a dedicated security team a step removed from the project itself?