A survey of 110 security leaders reveals a strong focus on software supply chain security, with ASPM and DevSecOps automation leading the way. 30% plan to pilot software bill of materials initiatives in the next two years. Funding for security is increasingly shared, with development teams assuming significant ownership of application security. While collaboration is improving, tension still exists, especially concerning vulnerability assessments. Additionally, the impact of AI on code quality remains uncertain, reflecting ongoing challenges in DevSecOps optimization.
"It's clear there is now more collaboration between application development and cybersecurity teams, with more security tools being incorporated into DevOps workflows."
"Historically, many developers have resented requests to search for vulnerabilities in code that either never made it into an application running in a production environment."
Collection
[
|
...
]