Have you heard of paved paths (aka paved roads or golden paths)? It is a particular approach to centrally provided services, libraries, etc. for the development teams in an organization. Well, that turns out to be a great vehicle to push the security lever forward and provide what Secure by Design calls “secure defaults for developers.” You can read more about this in the latest article on Secure by Design Education Hub: Paved Paths Towards Secure by Design.
As always, I welcome your thoughts and feedback.