BOSTON / Press Release / May 6, 2024

Progress in Integrating Security into Software Development, Progress in Adoption, but Bottlenecks Persist

“While we’ve witnessed a significant shift towards Continuous Security adoption, with a remarkable 242% increase since our last report, this year’s findings highlight the pressing need to address bottlenecks and inefficiencies that impede organizations from fully realizing the benefits of this approach,” said Brittany Greenfield, CEO & Founder of Wabbi. “Closing the gap between security and development requires proactive collaboration, streamlined access to relevant security information, and a leveraging technology to break down silos between teams.”

Key findings from the report include:

Organizations recognize the advantages of a Continuous Security strategy, with 54% emphasizing real-time collaboration between development, operations, and security teams as a primary benefit. Reducing security risk (53%) and empowering development teams with the flexibility to manage security within existing workflows (52%) are also recognized as valuable advantages.

Despite these benefits, and while 97% of respondents assert the importance of integrating security into the SDLC, only 32% consistently integrate security from the outset of the development process. Consequently, access to accurate and relevant information on application-specific security and compliance requirementsremains a challenge, with 56% reporting difficulties in obtaining such information.

Consequently, 94% of organizations recognize that their current application security processes are causing bottlenecks in development and delaying time to market, to at least some extent, with 30% “to a great extent.” These bottlenecks are a major pain point for organizations and can prevent them from delivering secure software quickly. Consequently, 62% of organizations have shipped vulnerable code in the last year.

The primary reasons for these bottlenecks include the dynamic nature of application security, requiring rework when requirements change (49%), difficulty in identifying the appropriate security requirements at the project and feature levels (46%), and poor collaboration or lack of feedback loops between development and security teams (43%).

Greenfield added that, “By embracing continuous security practices and eliminating bottlenecks, organizations can not only enhance their security posture but also optimize their development processes, shorten time to market, and drive overall business agility. We’re encouraged by the progress that organizations are making in integrating security into the SDLC, however, the results of our report also show that there are still some challenges that need to be addressed.”

The State of Continuous Security is a valuable resource for organizations that are looking to improve their application security posture. The report provides insights into the latest trends in Continuous Security. Wabbi completes this study annually as part of its commitment to empowering organizations with the tools and expertise needed to achieve real-time security insights and collaboration, facilitating a secure and efficient software development journey.

For more information on the findings and recommendations from the report, please visit https://wabbisoft.com/continuous-security-report

About Wabbi

Wabbi is the industry’s leading Application Security Posture Management Platform. A 2021 RSA Innovation Sandbox Finalist, Wabbi’s Continuous Security solution orchestrates and correlates all components of an application security program to bridge the gap between security and development to meet the ever-escalating demands of deploying application security in the SDLC.

From policy deployment, vulnerability management, and secure release management, Wabbi’s Continuous Security platform allows organizations to confidently ship code that meets their application-specific security standards, without sacrificing agility or velocity. By orchestrating each enterprise’s unique application security program, security teams capture centralized, automated governance, while development teams are empowered to manage security as part of their day-to-day workflows, unifying processes between Development, Security & Operations teams.

With Wabbi, companies keep code shipping – securely.

Learn More at https://wabbisoft.com

Press Contact for Wabbi

Julie Boyer
Wabbi
+1 617-963-0186
email us here

Visit us on social media:
LinkedIn
YouTube
Twitter
Instagram