Issue link: https://resources.mouser.com/i/1530851
another security vulnerability that needs to be addressed. The vast majority of edge and IoT devices are composed of components sourced from various suppliers around the world, each of which may have different levels of security rigor. A security breach could occur at any point along the supply chain, whether through compromised firmware, tampered hardware, or malicious insiders. Supply chain managers must oversee that every component, whether hardware or software, meets the required security standards before being integrated into the final product. This oversight involves rigorous vetting of suppliers, following secure procurement processes, and maintaining transparency throughout the production cycle. Companies should also consider implementing secure manufacturing processes, where security is guaranteed at every stage of the production and distribution process. Without tight control over the supply chain, even a well-designed product can become compromised before reaching the customer. Ultimately, the responsibility for security must be cross-functional. Security is not a problem that can be solved by any one department or team. Instead, security must be a shared responsibility that cuts across product development, supply chain management, legal compliance, and executive leadership. A culture of security needs to permeate every part of the organization, with clear roles and responsibilities assigned to different teams to ensure that security is addressed comprehensively. Security education and awareness are key to making this cross-functional collaboration work. Every team, from engineers to supply chain managers, needs to understand the potential vulnerabilities that their decisions could C h a p t e r 2 | O w n e r s h i p o f S e c u r i t y Companies should implement a Secure Software Development Lifecycle (S-SDLC) to ensure that proper security controls are designed as a first principle rather than added later. They need to embrace a layered security principle where security controls are part of the overall design of all architectural components." Asad Haque Executive Director, Security Architecture, Comcast 13 7 Experts Discuss Managing Security Risk and Regulatory Compliance at the Edge