DevSecOps Study Finds that Nearly Half of Organizations Consciously Deploy Vulnerable Applications Due to Time Pressures

Study conducted by analyst firm ESG explores security trends and challenges emerging in modern application development

Synopsys, released the “Modern Application Development Security” eBook. Based on a survey of cybersecurity and application development professionals conducted by Enterprise Strategy Group (ESG), the eBook highlights the extent to which security teams understand modern development and deployment practices, and where security controls are required to lower risk. The study finds that nearly half (48%) of survey respondents consciously push vulnerable code to production due to time pressures. The study also identifies that integrations complementing high velocity application development are most important, according to 43% of respondents, to improving application security programs.

HR Technology News: Smartsheet Brings Together Government Industry Experts to Form Federal Advisory Board

“DevSecOps has moved security front and center in the world of modern development; however, security and development teams are driven by different metrics, making objective alignment challenging,” said Dave Gruber, Senior ESG Analyst. “This is further exacerbated by the fact that most security teams lack an understanding of modern application development practices. The move to microservices-driven architectures and the use of containers and serverless architectures has shifted the dynamics of how developers build, test, and deploy code.”

HR Technology News: TecHRseries Interview with Iain Moffat, Chief Global Officer at People First

Synopsys commissioned ESG, a leading IT analyst and research organization, to document insights into the dynamics between development teams and cybersecurity teams with respect to the deployment and management of application security solutions. ESG surveyed 378 qualified cybersecurity professionals with insight into and responsibility for security application development technologies, and application development professionals involved with securing development tools and processes. The survey respondents  work at organizations in multiple industry verticals including manufacturing, financial services, construction/engineering, and business services, among others throughout the United States and Canada.

HR Technology News: Minimize the Number of Regular Meetings with Virtual Stand-ups

Write in to psen@itechseries.com to learn more about our exclusive editorial packages and programs.

cybersecurityDevSecOpseBookESGHR TechnologyNEWSSynopsys
Comments (0)
Add Comment