Both the Industrial Internet Consortium (IIC) and the Working Group for Industry 4 acknowledge that security is pivotal for the Industrial IoT. To achieve it, is important to address vulnerabilities in application code, particularly where they represent potential access points to the weakest elements of the underlying architecture. This session outlines the relationship between secure middleware, separation kernel/hypervisors, and application software, and discusses techniques to ensure that applications are securely coded.