More than 10 years ago, Microsoft implemented the Trustworthy Computing initiative, requiring SQL Server engineers to take regular security training and carry that responsibility for security across their job duties, regardless of the group in which they reside. This company-wide discipline was developed to create software that is secure by design—and to reduce overall risks.
According to the National Institute of Standards and Technology (NIST) public security board, SQL Server reportedly has the lowest number of security vulnerabilities across major database vendors. In addition, SQL Server has been deemed “the most secure database” by the Information Technology Industry Council (ITIC).*