| SEARCH PM LIFELINE |
|
|
 |
| USERS LOGIN |
|
|
|
| PM FORUM |
Latest entries on PM Forum:
Topic: Project Management Recruitment & Careers
Last Reply: Indeed - the forum has been a little quiet of late. It is the old chicken a egg - needs more content/opinions for people to deem it worth contributing....
Author:
Nick Boothroyd
Go there >>>
Topic: Project Management Recruitment & Careers
Last Reply: It doesn't look like this forum is used very much which is a shame, especially with the outlook being a little gloomy and many project managers are lo....
Author:
Lindsay Scott
Go there >>>
Topic: contract roles
Last Reply: Hi Matt,
Just noticed that this was posted some time ago, hopefully you will pick up this reply.
I work for Wellingtone Project Management, one ....
Author:
Baz Khinda
Go there >>>
|
|
| TELL A FRIEND |
Why not recommend PM Lifeline to a friend?
|
|
|
| INDEPENDENT SURVEY FINDS ENTERPRISES AT-RISK FROM INSECURE SOFTWARE |
Ref: N/1877
Date: 4/17/2009
Contributor: PM Lifeline Editorial, PM Lifeline
|
|
|
|
| 62% of companies experienced security breaches in critical applications within the last 12 months |
|
|
|
Veracode Inc., provider of the worlds leading Application Risk Management Platform, has announced the findings of an independent commissioned study conducted by Forrester Consulting on behalf of Veracode titled,
“Application Risk Management in Business Survey.” The survey revealed that enterprises are struggling to protect their organizations from the costly and growing threat of application security breaches. The study interviewed development, security and risk professionals across the US & UK, and confirmed that risk associated with insecure software is a very real concern and a top priority for management and developers alike.
The survey of nearly 200 businesses, found that more than 62% of organizations have experienced a security breach in the past 12 months due to exploitation of vulnerabilities in their critical software applications. The study also found that while companies feel they know the make-up and business criticality of their mixed application portfolios, there is little confidence in the security quality of their applications.
“Companies are not doing enough to ensure the security of open source code, outsourced code and commercial applications,” according to the study by Forrester Consulting.
Other key findings:
• Few companies know the security quality of business critical applications.
Only 13% of respondents know the security quality of all their business applications which they deem critical to the enterprise.
• Enterprises are increasing scrutiny on ISVs and outsourcers for delivering secure code.
60% of respondents stated they are actively incorporating (or have already adopted) third party security assessments as part of software procurement processes for COTS or outsourced code.
• Security as part of the software development process process is not widely practiced. Only 34% of companies have a comprehensive SDLC process which integrates application security.
• Most enterprises lack formal secure development training programs.
57% of organizations do not have systematic training programs addressing application security training for their developers.
• Security spending is not immune to economic conditions.
64% of respondents stated that while application security is important to them, they are struggling to meet the challenge on existing budgets.
“The same economic forces driving enterprises to use 3rd party applications are also increasing the risk of insecure software” says Matt Moynahan, CEO of Veracode. “Given the prolific use of third-parties to build business critical applications, global enterprises need a single flexible and cost-effective solution to seamlessly test the security across their entire application portfolio regardless of whether it was built internally or externally.”
Veracode will be sharing the complete findings of the survey in a webinar event on Thursday, May 7th at 1pm ET, featuring Forrester analyst, Chenxi Wang, and Veracode CTO, Chris Wysopal. Register for the webinar event at:
http://www.veracode.com/resources/survey-webcast-signup.html
|
|
|
|
| Feedback |
Send this article to a friend |
| If you would like to comment on this article, please email us, quoting the article reference number N/1877. |
|
|
|
|
|
