Large enterprises face problems with unsecured applications

By Ian Barker
Published 5 years ago

security flaw

A new survey of more than 200 CISOs in the US and Canada finds that large enterprises typically operate 1,300 or more complex applications but only protect 60 percent of them, leaving more than 500 applications unprotected at a time where adversarial attacks are increasing.

The study from crowdsourced security company Bugcrowd along with the Enterprise Strategy Group (ESG), also shows strong interest in using DevOps to automate security.

Nearly four out of five organizations have adopted DevOps, and more than four out of five are planning to integrate cybersecurity processes and controls in the continuous integration and continuous delivery (CI/CD) processes.

"The scope of cybersecurity continues to expand as attackers and defenders develop new strategies and tactics in response to the ongoing broad adoption of the cloud and mobile," says Doug Cahill, senior analyst at ESG. "As attack surfaces expand and adversaries gain additional opportunities for penetration, security leaders are looking to crowdsourced security platforms, like Bugcrowd, that can effectively scale in the same continuous nature as the development process."

CISOs are keen to adopt the benefits of crowdsourced security, with almost 90 percent of companies surveyed already running, planning to run in the next 12 months, or interested in running a crowdsourced security program.

The top benefits of crowdsourced cybersecurity are seen as paying for valid results rather than effort or time (44 percent), reflecting a strong ROI value proposition, and the continuous coverage of applications (42 percent). 60 percent also see room to add a continuous crowdsourced security penetration testing program to their traditional point-in-time testing efforts.

"The increasing number of unfilled cybersecurity jobs and the pressure to bring products to market faster have contributed to the growing and under-defended attack surface," says David Baker, chief security officer at Bugcrowd. "Our latest survey with ESG underscores how crowdsourced cybersecurity is quickly becoming a foundational element of any organization's cybersecurity program."

Large enterprises face problems with unsecured applications

Recent Headlines

Addressing digital transformation needs in the public sector [Q&A]

The psychological impact of phishing attacks on your employees

Canonical releases Ubuntu Linux 24.04 LTS 'Noble Numbat'

New tool lets enterprises build their own secure gen AI chatbots

Younger women are going into cybersecurity but more needs to be done

Politically motivated DDoS attacks on the rise

TCL 50 XL 5G Android smartphone hits Metro by T-Mobile: Big features, small price

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.0 'pl'

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

Outrageous: Microsoft to charge $61 for Windows 10 updates -- consider switching to Linux!

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

Easter giveaway! Get a licensed copy of 'VideoProc Converter for Windows/Mac' (worth $78.90) for FREE