Security Products need regulation?

Photo by Philipp Katzenberger on Unsplash

Vendors have to up their game when it comes to selling cloud solutions.  As soon as you start selling Managed firewall you are entering the #security realm.  Knowing the existing security landscape vendor’s should be promoting security at the get go, ie. Security by Design, #Privacy by Design, etc…..

I had a pleasure of dealing with a vendor, a very large organization, selling a basic manged IP filter #firewall solution to its customers.  When I questioned they were fine with their basic offering as they thought that for some customer having a firewall is just a tick mark in the box.

In this time and age selling a basic manged IP filter firewall is like selling a car without seatbelts and airbags.

The industry needs controls in place where every security product needs to pass basic security requirements test before being offered to customers.  If the security products are not scrutinized in early stages I am afraid the risk foot print is going to keep on increasing allowing threat vectors enjoy the freedom and wreak havoc.

What are your thoughts?