CrowdStrike introduced a new framework designed to catch errors early and mitigate the fragility of systems, CEO George Kurtz said last week. The release follows the company’s defective software update that caused one of the largest global IT outages in history over the summer.
The framework, dubbed resilient by design, borrows language and principles from the Cybersecurity and Infrastructure Security Agency’s secure by design initiative, which aims to shift the responsibility for security from customers to vendors. CrowdStrike was one of the first companies to sign CISA’s voluntary secure-by-design pledge in May.
Resilient by design expands on the concepts of CISA’s secure by design to help ensure that our systems and companies are built to anticipate, withstand, adapt and recover from any disruption that might compromise security, operations or availability,” Kurtz said in a blog post. He revealed the framework during CrowdStrike’s annual Fal.Con conference last week.
The Resilient-by-Design framework focuses on three key elements.
- Foundational resilience ensures that resilience is embedded into every process and system.
- Adaptability allows CrowdStrike to tailor solutions to the unique security needs of different industries.
- Continuous learning drives ongoing improvement by analyzing evolving threats and customer feedback to stay ahead of future challenges.
