What are some IoT security initiatives you've created or projects you're working on through the program?
Mark Johnson: We had a few meetings and are trying to pull together two internal projects: One is a whitepaper on IoT security, and the other is coming up with a threat-modeling mechanism for how mature your IoT security platform is. It's really a maturity model, how far along are customers in developing security for their solution or IoT platform – we bring it to customers and tell them how far along they are, where they might find gaps.
[The program includes] system integrators, people focusing on security, companies focusing on IoT. But really the goal is driving each other to make sure we're delivering security across the board. Microsoft is giving back to us in a couple of ways. We talked about a cool way to do some penetration testing or hacking of each other's systems. That's something we've been thinking about adopting within the group and expanding that.
