Research Reveals Global Growth of Secure DevOps
New research from Secure Code Warrior®, the global secure coding company, has revealed an attitudinal shift in the software development industry, with organisations bucking traditional practices for DevOps and Secure DevOps.
The global survey of professional developers and their managers found seven in 10 organisations (70%) recognise the importance of secure coding practices, with results indicating an industry-wide shift from reaction to prevention is underway.
Dr. Matias Madou, Chief Technology Officer and Co-Founder at Secure Code Warrior, said, “We are seeing a fundamental shift in mindsets across the world, as the industry slowly moves from reactive, band-aid solutions rolled out after a breach, to the proactive and human-led practice of writing quality software that is intrinsically free from vulnerabilities right from the very first keystroke.”
“This research shows that ‘secure code’ is becoming synonymous with ‘quality code’ within software development, and security is becoming the responsibility of development teams and leaders—not just AppSec professionals,” he said.
Secure coding seen as ‘reactive’
Reactive practices like using tools on deployed applications and manually reviewing code for vulnerabilities were the top two practices respondents associated with coding securely. However, a proactive shift in mindset was evidenced across the globe, with more than half (55%) of the developers surveyed also recognising secure coding as the active, ongoing practice of writing software protected from vulnerabilities.
Managers and developers are misaligned
Over half (55%) of managers surveyed said secure coding was practised and integrated throughout the entire development process, compared to only 43% of developers. Conversely, 36% of developers consider secure coding during development but not the design phase, as opposed to under one-third (32%) of managers.
Secure code an increasing indicator of success
While those surveyed identified ‘application performance’ and ‘functionality and features’ as the most common success metrics within software development (67% and 62% respectively), almost four in five (79%) respondents said the importance of ‘secure code’ was growing in prominence.
Application security is shifting
Almost half of respondents (46%) said development leads and teams should be responsible for application security rather than AppSec teams (24%). Over eight in 10 (81%) developers surveyed said they were accountable for any vulnerable code produced.
Developers motivated to upskill
‘Increased productivity and efficiency’, ‘curiosity’ and ‘avoiding problems caused by insecure code’ were identified as the leading intrinsic motivators to learn secure coding (20%, 14% and 11% respectively). Despite only 10% of respondents listing career advancement as a personal motivator, four in five (81%) managers were more likely to hire talent with secure coding skills.
More training is needed
91% of managers surveyed said they faced greater than average difficulty when implementing secure coding practices within their organisation, despite the overwhelming majority of respondents (97%) believing they were sufficiently trained. Perhaps, this is because almost nine in 10 (88%) developers surveyed said coding securely was challenging.
Madou added, “With OWASP’s Top 10 software vulnerabilities causing more security breaches over the past two decades than any others, now is the time for businesses to upskill developers to gain the knowledge and skills needed to stamp out insecure code and prevent issues from occurring in the first place.”
“Code is at the heart of everyday interactions, and Secure Code Warrior is focused on championing security-skilled developers who can create amazing, safe software for our connected world.”
To gain early access to the report, ‘Shifting from reaction to prevention: The changing face of application security 2021’, register your interest at scw.buzz/earlyaccess
Secure Code Warrior® commissioned Evans Data Corporation, the market intelligence leader within the IT industry, to conduct a global survey of developers and decision-makers actively engaged in software development. In August 2020, 400 respondents were surveyed across North America, India, the United Kingdom, Europe, Australia, New Zealand and South-East Asia.
About Secure Code Warrior
Secure Code Warrior is the developer-chosen solution for growing powerful secure coding skills. By making secure coding a positive and engaging experience for developers as they increase their software security skills, our human-led approach uncovers the secure developer inside every coder, helping development teams ship quality code faster.
Through inspiring a global community of security-conscious developers to embrace a preventative secure coding approach, our mission is to pioneer a people-first solution to security upskilling, stamping out poor coding patterns for good. Learn more at securecodewarrior.com.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
For media enquiries, to access the full report or arrange an interview:
Carly Ryan, Hotwire
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
DYSIS Announces New Compact and Portable Colposcope Design with Computer-Aided Cervical Mapping27.7.2021 17:30:00 CEST | Press release
DYSIS Medical Inc. is excited to announce the launch of DYSIS® View, a compact and portable colposcope, which includes the company’s innovative computer-aided cervical mapping technology that helps healthcare professionals detect cervical lesions more clearly. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210727005846/en/ DYSIS View | Computer-Aided Colposcopy with Cervical Mapping (Photo: Business Wire) The DYSIS family of colposcopes include the novel DYSISmap, which is a color-coded summary of the acetowhitening effect of the patient’s cervix. Colors are allocated on the map depending on the acetowhitening changes measured by DYSIS during the examination. This data helps healthcare professionals improve biopsy selection. In the IMPROVE-COLPO study, when map-assisted biopsies were added to colposcopy exams, detection of patients with CIN2+ increased by 44%1. “We are thrilled to bring DYSIS View to market to complement our
Exchanger Industries Limited Acquires HRS Heat Exchangers27.7.2021 17:00:00 CEST | Press release
Exchanger Industries Limited (“EIL”), the Canadian market leader and globally recognized designer and manufacturer of heat transfer products for the energy, petrochemical, industrial and clean power generation sectors, has acquired HRS Heat Exchangers Ltd. ("HRS"). Financial terms were not disclosed. HRS is widely recognized as the pre-eminent, international specialist supplier of heat exchangers and custom process systems across the environmental, food, beverage, and pharmaceutical sectors. The seasoned HRS management team will be retained by EIL and play a critical role in executing plans for robust international expansion afforded by the strategic combination of two distinct, yet complementary industry leaders. “For decades, we’ve worked hard on behalf of our customers in Canada, the U.S. and 25 countries worldwide, consistently providing them with mission-critical, innovative solutions in some of the most demanding environments,” stated Mark el Baroudi, EIL’s CEO. “The HRS acquisit
Quanergy’s 3D LiDAR Helps Waste Incineration Plant Optimize Recycling Process and Reduce Environmental Impact in China27.7.2021 16:18:00 CEST | Press release
Quanergy Systems, Inc., a leading provider of OPA-based solid state LiDAR sensors and smart 3D solutions for automotive and IoT, today announced a new smart LiDAR deployment automating waste plant operations, to ensure process efficiency and minimize the environmental impact of a waste-to-energy incineration plant in China. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210727005789/en/ Quanergy’s 3D LiDAR Helps Waste Incineration Plant Optimize Recycling Process and Reduce Environmental Impact in China (Graphic: Business Wire) Deployed in collaboration with Hunan University, one of China’s top engineering research universities, and Hunan Qiaokang Bridge Health Intelligent Technology for Puxiang Bioenergy, Quanergy’s high accuracy M-Series 3D LiDAR sensors were applied to scan the surface of the waste piles at the incineration plant and create a 3D point cloud image, to accurately calculate the volume of the waste. The LiDAR
Andersen Global Enhances Gambian Foothold with Payce Consulting27.7.2021 15:30:00 CEST | Press release
Andersen Global continues its Africa expansion with the addition of collaborating firm Payce Consulting, adding dimension to the organization’s existing presence in The Gambia. Payce Consulting, founded in 2014 by Partner Paul Gaye, serves the public and private sectors at the local and international level including financial institutions, education, industrial and commerce, transportation, fish processing and export, hotel and leisure, seaport, energy, agriculture, information technology and government agencies. The tax and advisory firm provides corporate finance, business advisory, business structuring and insolvency, outsourcing, financial services and portfolio management services to clients. “Our client-focused approach, extensive industry knowledge and commitment to best-in-class service have allowed us to develop and maintain strong client relationships,” Paul said. “Our collaboration with Andersen Global is the next step for our firm as we look to provide our clients with the
Academy of Marketing Science Mary Kay Doctoral Dissertation Awards Announced at 2021 Annual Conference27.7.2021 15:03:00 CEST | Press release
Mary Kay Inc., a leading corporate advocate of women’s empowerment and entrepreneurship, continued its decades-long support of education and research with the announcement of the 2021 winners of the Mary Kay Doctoral Dissertation and Doctoral Dissertation Proposal Awards at the Academy of Marketing Science (AMS) Annual Conference held virtually last month. For more than 25 years, the global beauty company has awarded these annual grants to provide doctoral candidates in marketing the opportunity to showcase their successfully defended dissertations in front of their peers. Finalists are selected based on their final presentations at the AMS Annual Conference. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210727005230/en/ AMS Mary Kay Doctoral Dissertation Awards were presented to six deserving winners at the 2021 AMS Annual Conference held virtually. (Graphic: Mary Kay Inc.) Submissions are open to doctoral students from pr
Everbridge Launches Industry’s First Global Critical Event Management (CEM) Certification TM Program with Formalized Standards for Enterprise Resilience27.7.2021 14:00:00 CEST | Press release
Everbridge, Inc. (NASDAQ: EVBG) today announced the industry’s first Critical Event Management (CEM) Certification™ Program for assessing an organization’s enterprise resilience. Developed from 20 years of professional services engagements across tens of thousands of projects in over 150 countries and facilitating tens of billions of critical interactions, Everbridge’s proprietary CEM Standards FrameworkTM and related certification process offer organizations an end-to-end methodology for evaluating and benchmarking enterprise resilience preparedness. Businesses who achieve CEM CertificationTM status follow proven industry best practices for enterprise resilience to keep their people safe and organizations running, faster. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210727005510/en/ Everbridge Launches Industry’s First Global Critical Event Management (CEM) Certification Program with Formalized Standards for Enterprise Re
ExaGrid Named a Finalist for the 2021 Storage Awards27.7.2021 14:00:00 CEST | Press release
ExaGrid®, the industry’s only Tiered Backup Storage solution, today announced that it has been nominated in six categories for the 18th annual Storage Awards. ExaGrid has become a finalist for Enterprise Backup Hardware Company of the Year, Storage Innovators of the Year, Immutable Storage Vendors, Storage Performance Optimisation Company of the Year, Storage Product of the Year, and Storage Company of the Year. Voting to determine the winner in each category is underway now and closes on September 8, 2021. Winners of this year’s awards will be announced at “The Storries XVIII” awards ceremony held in London on September 22, 2021. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210727005142/en/ “We are honored to be nominated in six categories,” said Graham Woods, ExaGrid’s Vice President of International Systems Engineering. “It is also exciting that The Storries awards ceremony will be held in person this year, as the pande
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.Visit our pressroom