Revealing the Cultural Divide Between Application Security and Development

A Ponemon Institute© Research Report | Sponsored by ZeroNorth | September 2020

With sponsorship from ZeroNorth, Ponemon Institute recently conducted a survey detailing the cultural divide between application security teams and developers, who lack a common vision on how to deliver software capabilities to market quickly and securely. These findings reveal the serious impact such misalignment can have on organizations, including the ability to remain competitive during critical periods of digital transformation.

Learn more about how to bridge this critical divide to power security DevOps

Companion Webinar: Bridging the Gap to Reduce Security Risk

In this webinar, Dr. Larry Ponemon, ZeroNorth CEO John Worrall and Christian van den Branden, SVP of Engineering at ZeroNorth offer their unique perspectives on “Revealing the Cultural Divide Between Application Security and DevOps” research results, as well as the five steps Ponemon Institute recommends organizations can take now to help bridge this critical cultural divide. Register now >

Infographic: The Research Results at a Glance

Organizations are at risk when application security and development teams don’t share a common vision on how to deliver software to market quickly and securely. As build and delivery timelines accelerate, security is often left behind. This inability to work under a unified security goal is referred to here as the cultural divide. View now >

White Paper: Federated Responsibility for AppSec—a New Model to Power Secure DevOps

Securing DevOps and minimizing friction between security and development teams requires a fundamental shift in focus, away from tools, and toward a shared vision on how to deliver software. Learn how a Federated Responsibility Model for AppSec can help your organization deliver secure software at the speed of innovation. Read now >

Related blogs

"...more than half of developers surveyed say AppSec stifles innovation. On the other hand, 65% of AppSec professional believe developers do not care about securing applications early in the software development life cycle."