With the proliferation of attacks and breaches at the application layer, it's clear that application security testing is a growing necessity. What's less clear is how organizations can hope to bridge the gap between the priorities of development, operations, and security teams. To understand how organizations are handling these challenges, CA Veracode partnered with ESG to conduct a survey of IT professionals.
Given the acute shortage of cybersecurity skills, IT professionals in our survey recognize the security benefits from the shift to DevOps, which eases automation of security testing. Over half (58 percent) of respondents indicated that DevOps enabled automation of dynamic testing for continuous monitoring of web applications in production, while 56 percent said that DevOps enabled automation of security testing during development.