What is challenging successful DevSecOps adoption?

2022-08-17 03:30

According to the study, only 22% of respondent organizations have developed a formal DevSecOps strategy integrating security into software development lifecycle processes, but an overwhelming percentage of those report a positive impact on accelerating incident detection and response efforts.

Based on a survey of 200 DevOps and IT/information security professionals, the report shows that more than half of respondent organizations using DevSecOps tools and processes experienced a significant reduction in incidents that occur in production.

Although adoption is low for now, the study also confirms potential growth in the industry with 62% of respondents saying their organization is actively evaluating use cases or has plans to implement DevSecOps.

"As organizations adopt modern software development processes leveraging cloud.platforms, they are looking to incorporate security processes and controls into developer workflows," said Melinda Marks, senior analyst at ESG. "This research shows DevSecOps can be a game changer for companies, and there is no doubt we will see growing market traction over the next few years."

69% of organizations do not capture certain data sources because of the high cost of storage/retention, which is problematic if there is an incident and the organization has incomplete data for a thorough analysis and/or timely response.

The study shows that 91% of organizations are using multiple tools to get the most value out of their data, which makes it difficult for multiple groups to have access to the data they need to do their jobs.

News URL

https://www.helpnetsecurity.com/2022/08/17/devsecops-adoption-challenges/

#devsecops