In this Expert Insight, Harshil Parikh, the co-founder of Tromzo, an application security management firm, reveals findings from the company’s recent State of Modern Application Security Report, which surveyed 400 application security pros about their experiences with cyber attacks, addressing software vulnerabilities and the closer integration of security and development teams.
At Tromzo, we spend much of our time thinking about the challenges security professionals face as they strive to keep modern apps secure. To identify and better understand the roadblocks encountered by AppSec teams, we commissioned a survey of over 400 of these professionals. We published the results of this survey in our first annual State of Modern Application Security Report.
In our survey, we asked questions about the challenges faced today, including the relationship between security and developers. We probed for information about what would make AppSec programs more effective.
Our goal with publishing the results of this report is to help CISOs and security leaders better understand what’s preventing their application security programs from scaling. We believe that, armed with this information, they can keep up with the fast pace of modern software development.
Here’s a quick summary of six of our top discoveries for those who haven’t had a chance to read the full report.
Security Incidents are the norm
If you ask nearly anyone who works in cybersecurity, they will concur, at least anecdotally, that it’s not a question of if your organization will be the target of a cyberattack, only a question of when it will