Security Teams: Don’t Impose. Empower.

  • Written by Michael Bargury
You are currently viewing Security Teams: Don’t Impose. Empower.

Citizen development has become ubiquitous in businesses across industries, sizes and geographies. No matter what you do in an organization, or what your company does, there’s a good chance that you work with low-code/no-code (LCNC) platforms to create your own automations, integrations and apps. 

Most employees aren’t even aware that they’re part of a revolution in how businesses create their own internal structures and make things happen – but they already take for granted the added efficiency, productivity and autonomy that it brings with it. 

The explosion of LCNC is fantastic in many ways, but it comes with serious challenges for security teams, who are suddenly faced with risks that appear without warning – and often under the radar – created by employees with little security awareness and no idea that they’re opening their company up to major vulnerabilities.

In this article in his regular Dark Reading column, Michael Bargury, CTO of Zenity, argues that for security teams to be able to guide their companies effectively, they need to approach LCNC security as a chance to empower employees rather than restrict them. Think guidance – not governance.

All the news straight to your inbox. Signup for Zenity’s weekly newsletter.

Don’t miss a single opportunity to get knowledge.

About the Author

Michael Bargury

Michael is the Co-Founder and CTO of Zenity. He is an industry expert in cybersecurity interested in cloud, SaaS and AppSec. Prior to Zenity, Michael was a senior architect at Microsoft Cloud Security CTO Office, where he founded and headed security product efforts for IoT, APIs, IaC and confidential computing. Michael is leading the OWASP community effort on low-code/no-code security.

Table of contents