Investors Hangout Stock Message Boards Logo
  • Mailbox
  • Favorites
  • Boards
    • The Hangout
    • NASDAQ
    • NYSE
    • OTC Markets
    • All Boards
  • Whats Hot!
    • Recent Activity
    • Most Viewed Boards
    • Most Viewed Posts
    • Most Posted
    • Most Followed
    • Top Boards
    • Newest Boards
    • Newest Members
  • Blog
    • Recent Blog Posts
    • Recently Updated
    • News
    • Stocks
    • Crypto
    • Investing
    • Business
    • Markets
    • Economy
    • Real Estate
    • Personal Finance
  • Market Movers
  • Interactive Charts
  • Login - Join Now FREE!
  1. Home ›
  2. Stock Message Boards ›
  3. User Boards ›
  4. News Desk 2018 Message Board

New Survey Shows Security Teams and Software Devel

Message Board Public Reply | Private Reply | Keep | Replies (0)                   Post New Msg
Edit Msg () | Previous | Next


Post# of 617763
(Total Views: 229)
Posted On: 06/14/2017 1:00:02 AM
Avatar
Posted By: News Desk 2018
New Survey Shows Security Teams and Software Developers Can Get Along in Pursuit of Better Security

BURLINGTON, MA--(Marketwired - Jun 14, 2017) - Veracode , a leader in securing the world's software, and acquired by CA Technologies ( NASDAQ : CA ), today announced the results of a study examining the relationships between application developers and security teams.

The study, conducted in conjunction with Enterprise Strategy Group (ESG), shows that despite the pervasive belief that security and development teams have conflicting priorities, initiatives such as creating DevOps environments and focusing on product innovation have the two teams aligned toward a common goal of creating secure software. In fact, according to the research, 58 percent of survey respondents stated their organization is taking a collaborative approach to securing applications. To view the full report and infographic, click here . 

Growing Need for DevSecOps The research aims to determine security and development professionals' views of application security and software development trends. Among respondents reporting their organization currently uses application security solutions like static application security testing, 43 percent report their organization does so because including application security in the development process is more efficient than reactively patching production systems.

Interestingly, 45 percent of respondents whose organization has adopted formal DevOps principles and best practices indicate DevOps makes the software development team's job easier, and only eight percent feel adding application security into the development process would slow down a DevOps environment. This is contrary to the common perception that a focus on security will slow down software development.

"Software continues to be the major driver of innovation and economic growth. Eliminating perception that there is friction between security and development is a priority for IT professionals," said Pete Chestna, director of developer engagement, Veracode. "The positive perception of how security and DevOps can align, as indicated by this research, shows that development teams can and should consider security an integral part of their process."

This development could not come at a better time for businesses, as attacks leveraging software vulnerabilities are increasingly common and damaging. The WannaCry ransomware attack is the most recent example, exploiting a vulnerability in an older version of the Microsoft Windows operating system. While Microsoft had issued a patch for the vulnerability, thousands of organizations had not implemented the fix and became infected by WannaCry.

The research also indicates showed that nearly 70 percent of respondents plan to increase Application Security investments in the next 12 to 24 months. This increased investment further validates the growing importance of Application Security in the development process.

DevOps Influencing Technology Requirements The research points to the need for application security to become an integrated part of the DevOps process -- the combination increasingly known as DevSecOps -- and that this need is both recognized and accepted. The data also highlights the technology requirements necessary to make DevSecOps a reality. Tool complexity and the inability to integrate application security into the DevOps workflow are major obstacles to organizations deploying these tools effectively. In fact, the ability to integrate static software testing and software lifecycle tools (42 percent) and the ability to integrate dynamic software testing and software lifecycle tools (34 percent) into the application development and DevOps processes was the most cited consideration when evaluating static and dynamic application security testing products and services respectively.

"Contemporary application development methodologies such as DevOps foster communication and collaboration between the application development, operations and security teams with the goal of identifying and fixing vulnerabilities as early as possible to increase efficiency and enhance security," said Doug Cahill, senior analyst at ESG. "The increased adoption of DevOps combined with the eagerness to integrate and automate security testing throughout the entire software lifecycle indicates a shift towards DevSecOps, which means thinking of secure code as an element of creating quality code."

Methodology The study, commissioned by Veracode and conducted by ESG, surveyed 400 IT professionals in the U.S., U.K. and Germany. To read more about how DevSecOps builds a bridge between fast and secure software development, download Veracode's Developer's Guide to the DevSecOps Galaxy .

About Veracode Veracode, CA Technologies application security business, is a leader in helping organizations secure the software that powers their world. Veracode's SaaS platform and integrated solutions help security teams and software developers find and fix security-related defects at all points in the software development lifecycle, before they can be exploited by hackers. Our complete set of offerings help customers reduce the risk of data breaches, increase the speed of secure software delivery, meet compliance requirements, and cost effectively secure their software assets -- whether that's software they make, buy or sell.

Veracode serves over 1,400 customers across a wide range of industries, including nearly one-third of the Fortune 100, three of the top four U.S. commercial banks and more than 20 of Forbes' 100 Most Valuable Brands.

Learn more at www.veracode.com , on the Veracode blog and on Twitter . Copyright © 2017 Veracode, Inc. All rights reserved. All other brand names, product names, or trademarks belong to their respective holders.

Media Contact: Laura Paine Veracode Email Contact Phone: 339-674-1535 Megan Grasty Highwire for Veracode (U.S.) Email Contact Phone: 415-963-4174 ext. 26 Kate Baldwin Hotwire for Veracode (UK & EMEA) Email Contact Phone: +44 (0) 207 608 4677



(0)
(0)








Investors Hangout

Home

Mailbox

Message Boards

Favorites

Whats Hot

Blog

Settings

Privacy Policy

Terms and Conditions

Disclaimer

Contact Us

Whats Hot

Recent Activity

Most Viewed Boards

Most Viewed Posts

Most Posted Boards

Most Followed

Top Boards

Newest Boards

Newest Members

Investors Hangout Message Boards

Welcome To Investors Hangout

Stock Message Boards

American Stock Exchange (AMEX)

NASDAQ Stock Exchange (NASDAQ)

New York Stock Exchange (NYSE)

Penny Stocks - (OTC)

User Boards

The Hangout

Private

Global Markets

Australian Securities Exchange (ASX)

Euronext Amsterdam (AMS)

Euronext Brussels (BRU)

Euronext Lisbon (LIS)

Euronext Paris (PAR)

Foreign Exchange (FOREX)

Hong Kong Stock Exchange (HKEX)

London Stock Exchange (LSE)

Milan Stock Exchange (MLSE)

New Zealand Exchange (NZX)

Singapore Stock Exchange (SGX)

Toronto Stock Exchange (TSX)

Contact Investors Hangout

Email Us

Follow Investors Hangout

Twitter

YouTube

Facebook

Market Data powered by QuoteMedia. Copyright © 2025. Data delayed 15 minutes unless otherwise indicated (view delay times for all exchanges).
Analyst Ratings & Earnings by Zacks. RT=Real-Time, EOD=End of Day, PD=Previous Day. Terms of Use.

© 2025 Copyright Investors Hangout, LLC All Rights Reserved.

Privacy Policy |Do Not Sell My Information | Terms & Conditions | Disclaimer | Help | Contact Us