Security News > 2022 > March > App, security teams need closer bond to fend off cyberattacks
Enterprises need to create a more strategic alliance between their application security and cybersecurity teams if they are going to better protect themselves against cyberthreats.
Appsec team members tend to be developers and quality assurance pros creating internal applications used within the organization or exposed publicly or privately to customers, while cybersecurity teams' jobs include penetration testing and responding to incidents, he said.
It illustrates why it's important for developers to play a larger role in security.
"In the past, there was always the security teams pushing this to the dev teams and going, 'You must fix this critical vulnerability.' Now, trying to get the devs to understand that suddenly makes it more real because developers don't want to develop insecure code. They don't want to put the company at risk."
"With risk spreading across the organization, so should mitigation. In this way, cybersecurity teams play a more strategic role - as well as being applied technically - but responsibility also is distributed across everything from the SDLC to executive teams."
A closer working relationship "Could very well impact or make a difference, and it will largely depend on the organization. Some organizations are still very much a mountain of silos. They want to see a security team and an engineering team, but it certainly could help remove some of those silos." .
News URL
Related news
- SOC teams are frustrated with their security tools (source)
- Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
- Top 5 Cloud Security Automations for SecOps Teams (source)
- Microsoft Ignite 2024 Unveils Groundbreaking AI, Security, and Teams Innovations (source)