I think it really depends on the type of technology being procured and where the security risk assessment is done. I think other witnesses have talked about leading agencies within the government context that have those technical skills to review the nature of a procurement and what the security risk is and then what mitigation should be put in within the procurement program.
I feel as though we're focused in very narrow lanes when it comes to procurement. It's buying at the lowest cost and then security is a separate consideration after the fact. Economic development is another consideration for another group of people at ISED. I think we need to be able to walk and chew gum in our public policy. We need to start looking at them as competing priorities but ones we want to reconcile. We're never going to get it perfect but we need to consider them through the procurement and also start looking at them as highly iterative. The actual technologies are built in an iterative way but the procurements are not. They are long—