Overview

Security has to enable the business—not hinder operations. This is especially critical with OT & Emerging Technologies, where innovation must be introduced safely without compromising business outcomes and putting the organization at undue risk. We embed security-by-design into project and solution delivery lifecycles across IT, OT, and in consideration of ET, establishing practical, measurable security practices supporting organizational goals and providing value for dollar.

Approach

Embedded Practices

• Review existing organizational project management processes and tools to identify opportunities for integrating security-focused activities, resources, and deliverables.

Emerging Technology (ET) Considerations

• Review project management lifecycle to ensure activities and deliverables include Emerging Technology.

Outcomes

Security Integration in Project Management

• Create or update project delivery lifecycle documentation to embed security requirements at each phase/stage/gate and recommend updates to the organization’s project system of record.

• Integrate IT, OT, and ET security activities and deliverables in project management workflows and checkpoints (Go/No Go decisions).

• Develop and deliver training materials for project management workforce.

Artifact Enhancement

• Define and embed security requirements within existing project management templates—such as Project Charters, Business Cases, and Project Plans—to ensure consistent consideration of IT/OT/ET security impacts.