Security & Privacy by Design (S|P) Principles
From our friends at the Secure Controls Framework (SCF), they simplified the concept of "security & privacy by design" in the following downloadable diagram to demonstrate Security & Privacy by Design (S|P) principles.
The S|P establishes 32 common-sense principles to guide the development and oversight of a modern security and privacy program. The S|P is sourced from the SCF, which is a free resource for businesses. The SCF’s free. comprehensive listing of nearly 750 cybersecurity and privacy controls is categorized into 32 domains that are mapped to over 100 statutory, regulatory and contractual frameworks. Those applicable SCF controls can operationalize the S|P principles to help an organization ensure that secure practices are implemented by design and by default.