Innovation vs. security: Can you have them both?

Issue 7 2021 Security Services & Risk Management

It was the motoring celebrity Jeremy Clarkson that once said: “speed doesn’t kill, it’s the coming to a stop that gets you.” The same applies to rapid innovation.

If you roll out the latest and greatest technology too quickly without securing it, you might be vulnerable to halting attacks. Implementing the most market-leading innovations is the name of the game, but at what cost and what risk. Speed and safety are the two sides of the rope pulling at each other, but the real question is if it is possible to have both?


Matthew Gaskell.

There is a perception that it’s one versus the other. That when you create for one, you have to apply the other. It is a push and pull mechanism. The more creative and innovative, the greater the security risk of vulnerability. And that implementing security protection mechanisms can really put the brakes on speedy innovation.

However, successful companies see another way. The true genius is being able to do both. True innovation is being able to deploy at speed while creatively building the guard rails that prevent unwanted threats. It’s about maintaining that balance of speed and safety. Getting it right takes great skill and requires ingenuity.

Below are some of the innovation and security divides to consider.

First to market vs. untested defences

In a desire to be the first to market with your concept and gain first-mover-advantage, often there is an increase in complexity without the technology being tested against known/unknown threats. This creates vulnerabilities and you can leave yourself exposed. Automated testing can help smooth out the process and quickly catch the unknown exposures that could have been overlooked.

New technologies vs. new vulnerabilities

When new technologies are introduced they are often untested or haven’t been tested thoroughly, which means they are not always secure. When this occurs, new weaknesses can be introduced that either exist or haven’t been discovered yet. Small changes can introduce large holes in previously solid defences. New technologies can change an entire industry landscape but at what cost to the security of the customer, consumer or user?

When you’re trying something new, you have to learn how to protect it as well.

New features vs new exposures

As you add game-changing innovations you have to make sure the safety belts work and the tyres are roadworthy. New features impact the integrity of your security posture. This speaks to the way in which the pieces of your system fit together over the strength of the technologies you use.

Leading-edge features such as decoupled architectures can allow you to chop and change at pace, but they need to be securely fastened. Protect the component not the perimeter.

Innovation vs. compliance

In many industries compliance is a must, such as in banking, payments and insurance. You have to maintain compliance to various standards whether they be PCI, PII or PoPIA. Every industry is impacted by these standards to some degree.

When designing and building new systems, architectures or software, you have to be cognisant of the respective compliance requirements that you need to adhere to. The benefit of innovation without compliance can have costly compliance ramifications. For example, exposing customer data such as personal information can violate legislation or standards and lead to heavy penalties. What makes this riskier, ironically, is that compliance standards are not standard. They are constantly in flux, making this knowledge tantamount to success.

Constant automated monitoring of updates or modifications can alleviate the restricting burden of continual compliance. Small systematic increments make it easier to rapidly roll out the latest and greatest creations while maintaining the compliance rubber stamp.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Your Wi-Fi router is about to start watching you
News & Events Surveillance Security Services & Risk Management
Advanced algorithms are able to analyse your Wi-Fi signals and create a representation of your movements, turning your home's Wi-Fi into a motion detection and personal identification system.

Read more...
Cybersecurity and insurance partnership for sub-Saharan Africa
Sophos News & Events Information Security Security Services & Risk Management
Sophos and Phishield Announce first-of-its-kind cybersecurity and insurance partnership for sub-Saharan Africa. The SMARTpod podcast, discussing the deal and the state of ransomware in South Africa and globally, is now also available.

Read more...
FICA in the era of deepfake and AI-driven fraud
Security Services & Risk Management
A growing fraud strategy involves leveraging AI to produce highly convincing fake images, videos, and audio, commonly referred to as deepfakes, which are used to impersonate real individuals and spread misleading or false information.

Read more...
Risk management and compliance enforcement
Security Services & Risk Management
Having a risk management and compliance programme (RMCP) is not just a procedural formality; it is a legal requirement under Section 42 of the Financial Intelligence Centre Act (FICA).

Read more...
The dangers of poor-quality solar cables
Security Services & Risk Management Smart Home Automation
Reports indicate that one in six fires attended by South African firefighters is linked to substandard solar installations, often due to faulty wiring or incompatible components.

Read more...
Growing risks for employers
Security Services & Risk Management
With South Africa’s unemployment rate exceeding 32% and expected to rise beyond 33% this year, desperation is fuelling deception in the job market. Trust is no longer a given, it is a gamble.

Read more...
Chubbsafes celebrates 190 years
Gunnebo Safe Storage Africa News & Events Security Services & Risk Management
Chubbsafes marks its 190th anniversary in 2025 and as a highlight of the anniversary celebrations it is launching the Chubbsafes 1835, a limited edition 190th-anniversary collector’s safe.

Read more...
New law enforcement request portal
News & Events Security Services & Risk Management
inDrive launches law enforcement request portal in South Africa to support safety investigations. New portal allows authorised South African law enforcement officials to securely request user data related to safety incidents.

Read more...
Continuous AML risk monitoring
Access Control & Identity Management Security Services & Risk Management Financial (Industry)
AU10TIX, launched continuous risk monitoring as part of its advanced anti-money laundering (AML) solution, empowering businesses to detect behavioural anomalies and emerging threats as they arise.

Read more...
Growing risks for employers
Security Services & Risk Management
With South Africa’s unemployment rate exceeding 32% and expected to rise beyond 33% this year, desperation is fuelling deception in the job market. Trust is no longer a given, it’s a gamble.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.