2 Comments
May 13, 2023Liked by Naveen Agarwal, Ph.D.

Interesting article - reminded me of the sometime-disconnect between software developers and security personnel: different views of risk, security people are not always involved early enough in the product lifecycle, etc.

Expand full comment
author

One reason it is happening in our medical device industry is that risk management is seen as a paper exercise for regulatory compliance. No one believes in it, and unfortunately auditors are not competent to catch even the obvious deficiencies.

Expand full comment