You basically listed ale the problems and yet failed to propose any realistic solutions. To think people don't want to use APIs or AI? Of course they do. Is it always feasible and possible to use such integrations? Of course not.
Your observations are also rather shallow , e g. EU being the regulatory superpower vs lack of standardized federal laws for privacy in the us
Since the Rainbow Series, MIL-STD-1785, and the IATF we learned as security pioneers in the public sectors that both static and dynamic elements of life cycle were required. But those who came after us in the private sectors were not mentored, trained, or apprenticed made assumptions that all requirements can be answered with just a static response or process outside of the life cycle. The revolution happened before just not heard with the lessons learned from the Rainbow Series, MIL-STD-1785, or the IATF v3.1.
You basically listed ale the problems and yet failed to propose any realistic solutions. To think people don't want to use APIs or AI? Of course they do. Is it always feasible and possible to use such integrations? Of course not.
Your observations are also rather shallow , e g. EU being the regulatory superpower vs lack of standardized federal laws for privacy in the us
Excellent post
Since the Rainbow Series, MIL-STD-1785, and the IATF we learned as security pioneers in the public sectors that both static and dynamic elements of life cycle were required. But those who came after us in the private sectors were not mentored, trained, or apprenticed made assumptions that all requirements can be answered with just a static response or process outside of the life cycle. The revolution happened before just not heard with the lessons learned from the Rainbow Series, MIL-STD-1785, or the IATF v3.1.