A global survey of app security managers has revealed that a majority (91%) of the respondents had experienced security breaches in the last year as a direct result of a vulnerable application.
“Security breaches within the enterprise have unfortunately become a societal norm, so identifying those gaps and creating the solutions to eliminate them is integral to the success of businesses today,” said Maty Siman, Checkmarx founder and CTO.
We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.
Surprisingly, over half of the respondents (54%) blame the shift to the cloud, saying that the move increased their concerns around secure application development.
Securing the supply chain emerged as one of the challenges of ensuring application security. More than a quarter (26%) of the respondents cited “gaining visibility into open source packages being utilized in custom applications” as the biggest challenge when it comes to visualizing and securing software supply chains.
Still, despite facing multiple breaches in the last year due to vulnerable applications, an overwhelming majority (81%) of developers say they can build a secure product.
Just about half (49%) of all surveyed software developers said they are adopting a DevSecOps model with security as a supply chain focus in order to reduce the risk of a breach, with 42% of AppSec managers saying the same.
The report also revealed that following an AppSec-related incident, 38% of AppSec managers and software developers said their organizations deployed penetration testing exercises to prevent future breaches, while 40% of software developers stated their organizations issued mandatory AppSec training.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’s TechRadar Pro’s expert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.