The Culture Connection Gets Real: Secure Software Development Requires a New Mindset
January 22 2018 - 9:00AM
Business Wire
Global Study Identifies Existing Organizational
Culture as a Key Hurdle for Companies to Overcome in Order to
Thrive in Digital Economy
CA Technologies (NASDAQ:CA) today revealed results following the
second phase of a global survey of more than 1,200 IT leaders
around the topic of secure software development. Conducted by IT
industry analyst firm Freeform Dynamics, the new report entitled,
“Integrating Security into the DNA of Your Software Lifecycle,”
highlights the influence of an organization’s culture on its
ability to integrate security practices into their software
development initiatives, a practice and approach commonly known as
DevSecOps.
Today’s digital economy is fueled by software. When software is
developed with security integrated from the start, the risk of data
breaches is greatly diminished, providing users with heightened
levels of confidence and trust when engaging with applications and
services that are so ubiquitous in our online world.
According to survey respondents, the majority confirmed that
software development supports growth and expansion, helps
businesses compete and drives digital transformation. And yet, the
findings show that, as software becomes more critical to business
success in the digital economy, security concerns are exponentially
on the rise. In fact, 74% of respondents agreed that security
threats due to software and code issues is a growing concern. CA
Veracode’s State of Software Security Report 2017 found that
vulnerabilities continue to crop up in previously untested software
at alarming rates, with 77% of apps having at least one
vulnerability on initial scan.
Creating a culture of secure software development is a major
challenge, according to the survey findings. An overwhelming 58% of
respondents cited existing culture and lack of skills as hurdles to
being able to embed security testing and evaluation within software
development processes. Only 24% strongly agreed that the
organization’s culture and practices supported collaboration across
development, operations and security. On top of cultural
limitations, less than a quarter of respondents strongly agreed
that senior management would sacrifice time to market in order to
have sufficient time to assess and repair software security
vulnerabilities.
“Security is a key principle in any Modern Software Factory.
While our survey findings confirm an overarching recognition in the
importance of ensuring that data and systems are built and
maintained securely, there is still a lack of cultural adoption
within organizations around this pressing issue,” said Ayman Sayed,
president and chief product officer, CA Technologies. “When coupled
with security, Intelligent IT – the use of AI, machine learning and
analytics to make better, more informed decisions – can
dramatically change the way that business is done.”
The report showcases characteristics of “Software Security
Masters” (the top 34% of respondents), which are organizations that
have been able to fully integrate security into their software
development lifecycles. This includes conducting early and
continuous application testing for security vulnerabilities, as
well as embracing the practice of DevSecOps.
In fact, when compared with the mainstream, respondents from the
Software Security Masters were over two times more likely to
strongly agree that they viewed security as an enabler of new
business opportunities. These organizations also exhibited the
following attributes:
- 50% higher profit growth
- 40% higher revenue growth
- Are 2.6x more likely to have security
testing keep up with frequent app updates
- Are 2.5x more likely to be outpacing
their competitors
“The organizations labeled as Software Security Masters are the
beacons of hope in today’s digital economy. Not only do they
exemplify and represent the cultural mindset necessary to adapt and
thrive in today’s dynamic market, they are influencing change
within the industry while shaping the workplace of the future,”
concluded Sayed.
Survey MethodologyThe global online survey of 1,279
senior IT and business executives was sponsored by CA Technologies
and conducted by industry analyst firm Freeform Dynamics in July
2017. It was augmented by in-depth telephone interviews with key
industry executives. For full survey methodology details, please
see the report, “Integrating Security into the DNA of Your Software
Lifecycle.”
Download the full report and other supporting
materials:
- Report: Integrating Security into
the DNA of Your Software Lifecycle
- Infographic
- Ayman Sayed Blog: The Competitive Edge
of DevSecOps
About Freeform DynamicsFreeform Dynamics is an IT
industry analyst firm. Through research and insights, the firm aims
to help busy IT and business professionals get up to speed on the
latest technology developments, and make better-informed investment
decisions. For more information, and access to a library of free
research, please visit www.freeformdynamics.com.
About CA TechnologiesCA Technologies (NASDAQ: CA) creates
software that fuels transformation for companies and enables them
to seize the opportunities of the application economy. Software is
at the heart of every business in every industry. From planning, to
development, to management and security, CA is working with
companies worldwide to change the way we live, transact, and
communicate – across mobile, private and public cloud, distributed
and mainframe environments. Learn more at www.ca.com.
Follow CA TechnologiesTwitterSocial Media PagePress
ReleasesBlogs
Legal NoticesCopyright © 2018 CA Inc. All Rights
Reserved. All trademarks, trade names, service marks, and logos
referenced herein belong to their respective companies.
View source
version on businesswire.com: http://www.businesswire.com/news/home/20180122005050/en/
CA TechnologiesJennifer Miu,
+1-650-534-9318jennifer.miu@ca.com
Xtrackers California Mun... (NASDAQ:CA)
Historical Stock Chart
From Aug 2024 to Sep 2024
Xtrackers California Mun... (NASDAQ:CA)
Historical Stock Chart
From Sep 2023 to Sep 2024