Source: devops.com
Synopsys Report Shows DevSecOps ProgressCategory: Software, Security, automation
A report based on analysis of the software security initiatives of 130 organizations conducted by Synopsys, a provider of static application security testing (SAST) and software composition analysis tools, suggests progress in terms of DevSecOps adoption is being made but there is still a long journey ahead. According to the survey results, 121 organizations now ensure host and network security basics are in place, with 73 organizations also monitoring application input.
More IT organizations are also embedding security reviews within their continuous integration/continuous delivery (CI/CD) platforms as they replace high-friction, out-of-band security tasks with ones that are automatically triggered by events in the CI/CD pipeline, added Ware.
As part of an effort to make the entire organization more resilient to change, organizations are making a more concerted effort to address security issues at all levels of the organization.
The DevSecOps challenge now is to eliminate as many opportunities for that human error to occur as possible.
More IT organizations are also embedding security reviews within their continuous integration/continuous delivery (CI/CD) platforms as they replace high-friction, out-of-band security tasks with ones that are automatically triggered by events in the CI/CD pipeline, added Ware.
As part of an effort to make the entire organization more resilient to change, organizations are making a more concerted effort to address security issues at all levels of the organization.
The DevSecOps challenge now is to eliminate as many opportunities for that human error to occur as possible.
Related Articles
Community Partners
DevOps Careers