It’s a process. It’s technology. It’s your people. It’s the Security Development Lifecycle! A modern development environment with high level services, managed code libraries and agile development methods automatically bakes security into your application. WRONG! Certainly, advances have been made but unfortunately vulnerabilities observed in applications continue to increase. Some of this is because operating systems and network stacks have become much more difficult to breach. How did Microsoft do it? By using the security development life cycle. You can do it too! This discussion provides an overview of the SDL process and describes approaches used by PI System development and support teams.