CISOs struggle to manage risk due to DevSecOps inefficiencies

2023-04-27 03:00

As their hybrid and multicloud environments become more complex, and teams continue to rely on manual processes that make it easier for vulnerabilities to slip into production environments, CISOs find it increasingly difficult to keep their software secure, according to Dynatrace.

The continued use of siloed tools for development, delivery, and security tasks is hindering the maturity of DevSecOps adoption.

This highlights the growing need for the convergence of observability and security to fuel data-driven automation that enables development, security, and IT operations teams to deliver faster, more secure innovation.

"Organizations are struggling to balance the need for faster innovation with the governance and security controls they established to keep their services and data safe," said Bernd Greifeneder, CTO at Dynatrace.

"The growing complexity of software supply chains and the cloud-native technology stacks that provide the foundation for digital innovation make it increasingly difficult to quickly identify, assess, and prioritize response efforts when new vulnerabilities emerge. These tasks have grown beyond human ability to manage. Development, security, and IT teams are finding that the vulnerability management controls they have in place are no longer adequate in today's dynamic digital world, which exposes their businesses to unacceptable risk," Greifeneder continued.

"Despite a widespread understanding of the many benefits of DevSecOps, most organizations remain in the early stages of adopting these practices due to siloed data that lacks context and limits analytics," continued Greifeneder.

News URL

https://www.helpnetsecurity.com/2023/04/27/devsecops-adoption-overcoming-resource-challenges/

#ciso #devsecops