DevOps adoption changes approach to application security

cyber security

New research from software supply chain automation company Sonatype reveals that the adoption of DevOps is leading businesses to adopt a different approach to security.

The survey shows that mature development organizations are ensuring automated security is woven into their DevOps practice, early. But the results reveal that IT organizations continue to struggle with breaches as a nearly 50 percent increase was recorded between Sonatype's 2014 and 2017 surveys.

DevOps is steadily gaining in maturity with 67 percent of survey respondents describing their practices as very mature or improving in maturity. Where traditional development and operations teams see security teams and policies as slowing them down (47 percent), DevOps teams have discovered new ways to integrate security at the speed of development. Only 28 percent of mature DevOps teams now believe they are being slowed by security requirements.

Developers are taking more responsibility for security too, with 24 percent of all respondents saying it's a top concern while in mature DevOps organizations that number rises to 38 percent. Also 58 percent of mature DevOps teams have automated security as part of Continuous Integration (CI) practices compared to 39 percent of all survey participants.

In mature DevOps organizations 42 percent perform application security analysis at every stage of the software delivery lifecycle. This number shrinks to just 27 percent when all survey respondents are counted.

"As evidenced by this year's survey results, organizations everywhere are now transforming their development from waterfall-native to DevOps-native tools and processes," says Wayne Jackson, CEO at Sonatype. "Along the way, they are coming to grips with one simple fact: DevOps is not an excuse to do application security poorly; rather it is an opportunity to do application security better than ever."

You can read more about the findings in the full report on the Sonatype website and there's a summary of the findings in infographic form below.

DevSecOps Survey Infographic _ Sonatype

Photo Credit: Sergey Nivens/Shutterstock

Comments are closed.

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.