Security News > 2022 > March > App, security teams need closer bond to fend off cyberattacks
Enterprises need to create a more strategic alliance between their application security and cybersecurity teams if they are going to better protect themselves against cyberthreats.
Appsec team members tend to be developers and quality assurance pros creating internal applications used within the organization or exposed publicly or privately to customers, while cybersecurity teams' jobs include penetration testing and responding to incidents, he said.
It illustrates why it's important for developers to play a larger role in security.
"In the past, there was always the security teams pushing this to the dev teams and going, 'You must fix this critical vulnerability.' Now, trying to get the devs to understand that suddenly makes it more real because developers don't want to develop insecure code. They don't want to put the company at risk."
"With risk spreading across the organization, so should mitigation. In this way, cybersecurity teams play a more strategic role - as well as being applied technically - but responsibility also is distributed across everything from the SDLC to executive teams."
A closer working relationship "Could very well impact or make a difference, and it will largely depend on the organization. Some organizations are still very much a mountain of silos. They want to see a security team and an engineering team, but it certainly could help remove some of those silos." .