If you are like most CISOs who are starting or scaling up application security programs, you will run into the challenges listed in this infographic. 

When you think about it, all of these challenges are interconnected.  The traditional approach of assessing applications with tools requiring security expertise isn’t currently scaling up to assess the volume of applications being produced by enterprises (challenge 1). Application security budgets aren’t going to increase enough to close the gap by just do more of the same (challenge 4).

The most effective way to scale up security is to focus on changing the development organizational culture/attitude towards security assessments and remediation (challenge 2). However, for that change to happen CISOs need development executives and team leaders to back them up that secure development is important (challenge 3).

Not to mention all of this change must take place in a short amount of time that is a typical CISO’s tenure (challenge 5).

Addressing all of these interconnected challenges isn’t achieved by simply throwing more money and people at the problem. Security teams need to get creative on how to deliver scalable security to the thousands of applications enterprise are creating.

Wouldn’t it be great if your rethinking is fueled by lessons learned from those who have done it before, from people who are systematically closing application security gaps?

View the full IDG study.

About Jasmine Noel

At Veracode, Jasmine’s efforts are focused around market research, content development and sales enablement efforts. Previously, Jasmine was a founding partner of Ptak/Noel, an industry analyst and marketing consulting firm. Prior to that she also served as director of systems and applications management at Hurwitz Group, and senior analyst at D.H. Brown Associates. Jasmine holds a bachelor of science from the Massachusetts Institute of Technology and a master of science from the University of Southern California.

Comments (0)

Please Post Your Comments & Reviews

Your email address will not be published. Required fields are marked *

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.