"The Importance of Building in Security During Software Development"

Checkmarx has shared its findings from a survey of application security (AppSec) managers and software developers. The goal of the survey was to highlight the most significant security challenges being faced by AppSec managers and software developers in today's threat landscape. Results from the survey found that 45 percent of organizations faced at least two security breaches because of a vulnerable application. According to the survey, 34 percent of UK organizations that had suffered a security breach due to a vulnerable application laid-off employees who were considered responsible for the incident. Respondents noted that software developers and AppSec managers bore the most responsibility for the security of applications. Only 10 percent said CISOs or CSOs had the most responsibility within their organization. In regard to what led to breaches, 43 percent of respondents stated their organization experienced a software supply chain attack. Other factors cited to have contributed to breaches include cloud application misconfigurations, malicious third-party packages or components, and known but unpatched vulnerabilities. These findings suggest that organizations can directly influence the likelihood of breaches by tending to what they can control. Organizations that do not take care of what is in their control will suffer negative business impacts such as the theft or loss of customer data, the loss of customers, decline in customer trust, intellectual property theft or loss, and revenue loss. This article continues to discuss key findings shared by Checkmarx on the biggest security challenges experienced by AppSec managers and software developers.

Help Net Security reports "The Importance of Building in Security During Software Development"