Add codeowners file to security-products repositories

As suggested in !29057 (comment 213052179), it would be a good idea to identify the teams who own each of our repositories. It'll help clarify to new folks - as well as contributors from outside our established groups - who are the subject matter experts for these projects.