Innovation vs. security: Can you have them both?

Issue 7 2021 Security Services & Risk Management

It was the motoring celebrity Jeremy Clarkson that once said: “speed doesn’t kill, it’s the coming to a stop that gets you.” The same applies to rapid innovation.

If you roll out the latest and greatest technology too quickly without securing it, you might be vulnerable to halting attacks. Implementing the most market-leading innovations is the name of the game, but at what cost and what risk. Speed and safety are the two sides of the rope pulling at each other, but the real question is if it is possible to have both?


Matthew Gaskell.

There is a perception that it’s one versus the other. That when you create for one, you have to apply the other. It is a push and pull mechanism. The more creative and innovative, the greater the security risk of vulnerability. And that implementing security protection mechanisms can really put the brakes on speedy innovation.

However, successful companies see another way. The true genius is being able to do both. True innovation is being able to deploy at speed while creatively building the guard rails that prevent unwanted threats. It’s about maintaining that balance of speed and safety. Getting it right takes great skill and requires ingenuity.

Below are some of the innovation and security divides to consider.

First to market vs. untested defences

In a desire to be the first to market with your concept and gain first-mover-advantage, often there is an increase in complexity without the technology being tested against known/unknown threats. This creates vulnerabilities and you can leave yourself exposed. Automated testing can help smooth out the process and quickly catch the unknown exposures that could have been overlooked.

New technologies vs. new vulnerabilities

When new technologies are introduced they are often untested or haven’t been tested thoroughly, which means they are not always secure. When this occurs, new weaknesses can be introduced that either exist or haven’t been discovered yet. Small changes can introduce large holes in previously solid defences. New technologies can change an entire industry landscape but at what cost to the security of the customer, consumer or user?

When you’re trying something new, you have to learn how to protect it as well.

New features vs new exposures

As you add game-changing innovations you have to make sure the safety belts work and the tyres are roadworthy. New features impact the integrity of your security posture. This speaks to the way in which the pieces of your system fit together over the strength of the technologies you use.

Leading-edge features such as decoupled architectures can allow you to chop and change at pace, but they need to be securely fastened. Protect the component not the perimeter.

Innovation vs. compliance

In many industries compliance is a must, such as in banking, payments and insurance. You have to maintain compliance to various standards whether they be PCI, PII or PoPIA. Every industry is impacted by these standards to some degree.

When designing and building new systems, architectures or software, you have to be cognisant of the respective compliance requirements that you need to adhere to. The benefit of innovation without compliance can have costly compliance ramifications. For example, exposing customer data such as personal information can violate legislation or standards and lead to heavy penalties. What makes this riskier, ironically, is that compliance standards are not standard. They are constantly in flux, making this knowledge tantamount to success.

Constant automated monitoring of updates or modifications can alleviate the restricting burden of continual compliance. Small systematic increments make it easier to rapidly roll out the latest and greatest creations while maintaining the compliance rubber stamp.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

SAFPS issues SAPS impersonation scam warning
News & Events Security Services & Risk Management
The Southern African Fraud Prevention Service (SAFPS) is warning the public against a scam in which scammers pose as members of the South African Police Service (SAPS) and trick and intimidate individuals into handing over personal and financial information.

Read more...
Rewriting the rules of reputation
Technews Publishing Editor's Choice Security Services & Risk Management
Public Relations is more crucial than ever in the generative AI and LLMs age. AI-driven search engines no longer just scan social media or reviews, they prioritise authoritative, editorial content.

Read more...
How can South African organisations fast-track their AI initiatives?
AI & Data Analytics Security Services & Risk Management
While the AI market in South Africa is anticipated to grow by nearly 30% annually over the next five years, tapping into the promise and potential of AI is not easy.

Read more...
Efficient, future-proof estate security and management
Technews Publishing ElementC Solutions Duxbury Networking Fang Fences & Guards Secutel Technologies OneSpace Technologies DeepAlert SMART Security Solutions Editor's Choice Information Security Security Services & Risk Management Residential Estate (Industry) AI & Data Analytics IoT & Automation
In February this year, SMART Security Solutions travelled to Cape Town to experience the unbelievable experience of a city where potholes are fixed, and traffic lights work; and to host the Cape Town SMART Estate Security Conference 2025.

Read more...
Stallion repositions itself as a services provider
News & Events Security Services & Risk Management
Stallion has rebranded as Stallion Integrated Solutions to reflect its expanded capabilities beyond traditional security services to delivering integrated solutions that enhance safety, asset management, and operational efficiency.

Read more...
Seven tips to help ensure your backup batteries work
Power Management Security Services & Risk Management
Load shedding is back, officially or not. Lance Dickerson offers seven tips to prolong the life of your power backup systems and ensure they perform as intended when needed.

Read more...
Cybersecurity best practice
Information Security Security Services & Risk Management
Breach and attack simulation has become an essential element of cybersecurity strategies in any modern business by allowing companies to actively detect and resolve vulnerabilities through real-world attack simulations.

Read more...
Historic Collaboration cuts ATM Bombings by 30%
Online Intelligence Editor's Choice News & Events Security Services & Risk Management
Project Big-Bang, a collaborative industry-wide task team, has successfully reduced ATM bombings in South Africa by 30,7% during the predetermined measurement period of November, December and January 2024/5.

Read more...
Keeping safety central to enterprise risk management
Zulu Consulting Security Services & Risk Management
[Sponsored] As employee safety becomes an ever-more critical aspect of corporate risk management, Risk-IO assists risk managers in ensuring a safe working environment, whether in an industrial setting, an office, or anywhere.

Read more...
Empower individuals to control their biometric data
Information Security Access Control & Identity Management Security Services & Risk Management
What if your biometrics, now embedded in devices, workplaces, and airports, promising seamless access and enhanced security, was your greatest vulnerability in a cyberattack? Cybercriminals are focusing on knowing where biometric data is stored.

Read more...