Any organization that makes security for their product an add-on to their product does not deserve anyone’s business.

I’m tired of seeing organizations upselling security for the products they are pushing out. I immediately stop all conversations with a vendor when I notice this, but I am noticing it is becoming more common especially amongst SaaS applications. It does not make sense that I need to purchase an enterprise license for an application that will be used by one user so we can implement the proper security measures…

How can we, as a collective, push back against this?

applications business conversations cybersecurity notice organization organizations product products saas saas applications security vendor