• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to secondary sidebar
  • Skip to footer

Cybersecurity Market

Cybersecurity Technologies & Markets

  • Cyber Security Events 2023-2024
  • Cybersecurity Jobs
  • Sponsored Post
    • Make a Contribution
  • Market Reports
  • About
  • Contact

Survey Finds Only Eight Percent of Organizations Have Effective DevSecOps Practices

August 7, 2018 By admin

92 percent of organizations struggle to implement security into the entire DevOps process despite most saying they want to do so — a staggering capability gap exposed in the new, global data report from FreeForm Dynamics in collaboration with The Register called “Managing Software Exposure: Time to Fully Embed Security into Your Application Lifecycle.” Commissioned by Checkmarx, the study spotlights the biggest barriers to securing software today depending on where organizations sit on the DevOps maturity curve.

Report findings are based on online survey input from 183 respondents worldwide, the majority of whom hold software development, IT and security professional titles ranging in seniority from management to specialists and in-between, and coming from a wide range of industry sectors.

“Today, software is everywhere and the majority of respondents agree that it is integral to most business initiatives, yet there are still many gaps when it comes to securing that software,” said Maty Siman, Checkmarx founder and CTO. “Increased software complexity and the need to move at the speed of DevOps is creating a new type of risk in the form of software exposure, and as the results of this report attest, software security also needs to change.”

Other key findings include:

Gaps exist between theory and practice when it comes to security’s place in DevOps

96 percent of respondents report it is “desirable” or “highly desirable” for developers to be properly trained on how to produce secure code. As developers take responsibility for the security of their software, more respondents believe it is more important to educate developers and empower them than it is to educate other stakeholders in the organization like ops specialists and security specialists. But 41 percent agree that defining clear ownership and responsibility in relation to software security remains a big challenge, and just 11 percent say they have adequately addressed the need for developer education.

“More respondents say they believe it is more important to educate developers and empower them than put proper processes in place,” Siman said. “This is interesting, as most organizations today are actually doing the opposite. They focus more on processes like break build as well as one-off activities such as pen testing, rather than investing in securing their entire DevOps processes.”

Software security is a boardroom-level discussion, and it needs to be treated as such

57 percent of respondents strongly agree or agree with the statement that software security is now a boardroom issue. It’s a matter of business risk. In order to ensure better software security, developers and security teams need support from their executive teams, but 45 percent find it challenging to get senior management to approve funding for security training. 44 percent say executives don’t care about how quickly, frequently and safely developers deliver software, they just want them to do it.

Developers, testers, security specialists and ops staff need to work together

Although more than half of respondents do not have adequate code scanning solutions to flag potential security exposure early on, solutions are not the only thing needed to drive improvement. The majority say the way we fundamentally approach software security requires a rethink based on modern architectures and delivery approaches. The human factor poses both an opportunity and a challenge. Nearly 100 percent agree that developers, testers, security specialists and ops staff need to work together. Yet, 72 percent of respondents agree that different teams and disciplines within IT are still too often reluctant to trust each other.

Filed Under: Cybersecurity Market

Primary Sidebar

Market Analysis

The Growing Tin Market: Prospects for Future Demand and Sustainability
Prospects for the Growing Lithium Market in the Coming Years
DevOps and Agile: Integrating Development and Operations
China’s Use of Golden Shares: From Reducing State Role to Quietly Controlling Tech Giants
Why Amazon Acquired One Medical: Disrupting the Healthcare Industry with Technology-Enabled Care
The End of an Era: Why China is No Longer Viable as the World’s Factory
Cloudflare’s FedRAMP authorization opens up a huge market opportunity in the US government sector

Market Research Media

How plunging birthrates threaten national economies
Agile Leadership: Leading Agile Teams for Success
Chinese Brands Reach New Heights of Popularity in the West Amid Growing Political Tensions
Unrestricted Streaming: How VPNs Can Enhance Media Consumption Experience
How the world’s biggest companies have built and defended their moats
Virtual Learning Environments: A Game-Changer in Education?
Streaming video, training, and gaming coming together to form a cohesive and diverse media and entertainment ecosystem

Secondary Sidebar

Technologies

Hydrogen Technology: The Key to a Sustainable Future for the Cruise and Shipping Industries
Regenerative Finance: Shifting Towards Sustainable and Equitable Financial Systems
Why Arm Ltd May Build Its Own Semiconductor
Dragonfly Announces New Kubernetes Operator for In-Memory Datastore for Simplified Operations and Increased Performance
Cosmic Crops Return: Seeds Sent to Space to Develop Resilient Crops for a Warming World

Venture Capital

African Venture Investment Soars to Record High, Fueled by Tech Startups
Pitchly Secures $7 Million Series A Funding for SaaS-Based Data Enablement Solution
Agile Project Management: Roles and Responsibilities
Candidly, a student debt and savings optimization platform, has raised $20.5 million in a Series B round of financing
GameTech Startups Attracting Venture Capital Funding: The Importance of VPN Security

Footer

Recent Posts

  • Game On: Navigating the Wild World of Gaming Cybersecurity
  • Analyzing VPN Security Vulnerabilities: Risks and Best Practices
  • Infosec & Cybersecurity Congress 2023 UAE, March 28th-29th, 2023, Habtoor Grand Resort, Dubai
  • Boosting Cybersecurity: The Many Ways AI Can Help
  • Darktrace: A Cybersecurity Firm Under Scrutiny by Short Sellers
  • ESG Software: The Future of Sustainable IT Operations
  • Cyber attacks are becoming more frequent and sophisticated
  • The Future of Cybersecurity: 5 Trends to Watch
  • The Importance of Cybersecurity in the Digital Age
  • The next RSA Conference is scheduled to take place from Monday, April 24th to Thursday, April 27th, 2023

S3H

Introduction to Agile Software Development
Understanding Agile Manifesto and Principles
Mastering Agile: A Hands-on Workshop on Agile Software Development
Differences between Agile and Waterfall methodologies
Implementing Agile in Large Organizations

Blockchaining

Global Venture Funding for Blockchain and Crypto Companies Hit Record $26.8B in 2022, But Declined in Later Quarters
Unlocking the Power of Engagement: Exploring the Connection between Gamification and Blockchaining
Building a Decentralized VPN Using Blockchain Technology
Exploring the Latest Innovations in Blockchain and Crypto: A Report from the European Blockchain Convention 2023
Cryptocurrency has become a global phenomenon with a market capitalization of almost $3 trillion at its peak in November 2021

App Coding

Viral App Ideas to Code for Massive User Engagement
Common Pitfalls in Agile Development and How to Avoid Them
How Much Does It Cost to Build a FinTech App?
The annual GameTech Market 2023 is back and better than ever!
Appy Pie Introduces AI App Generator to Expedite App Development Process

API Coding

Building More Resilient APIs through Negative Testing
API governance is essential for ensuring the secure and reliable use of APIs
How to re-write a legacy API
How to Build API in Next.js
API Hub for Business Allowing Companies to Launch Custom Hubs in Minutes

Copyright © 2022 CybersecurityMarket.com

Technologies, Market Analysis & Market Research

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Do not sell my personal information.
Cookie SettingsAccept
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT