As governments increasingly view cybersecurity as a national priority, many are enacting policies that impact how companies develop and deploy products and services. Many of these policies blur legitimate security concerns and industrial policy and can include country-of-origin requirements or mandate specific standards or technologies. We explore the impact on companies of these approaches.