MA-SECURE-CODE-WARRIOR
New research from Secure Code Warrior ® , the global secure coding company, has revealed an attitudinal shift in the software development industry, with organisations bucking traditional practices for DevOps and Secure DevOps.
The global survey of professional developers and their managers found seven in 10 organisations (70%) recognise the importance of secure coding practices, with results indicating an industry-wide shift from reaction to prevention is underway.
Dr. Matias Madou, Chief Technology Officer and Co-Founder at Secure Code Warrior, said, “We are seeing a fundamental shift in mindsets across the world, as the industry slowly moves from reactive, band-aid solutions rolled out after a breach, to the proactive and human-led practice of writing quality software that is intrinsically free from vulnerabilities right from the very first keystroke. ”
“This research shows that ‘secure code’ is becoming synonymous with ‘quality code’ within software development, and security is becoming the responsibility of development teams and leaders—not just AppSec professionals, ” he said.
Secure coding seen as ‘reactive’
Reactive practices like using tools on deployed applications and manually reviewing code for vulnerabilities were the top two practices respondents associated with coding securely. However, a proactive shift in mindset was evidenced across the globe, with more than half (55%) of the developers surveyed also recognising secure coding as the active, ongoing practice of writing software protected from vulnerabilities.
Managers and developers are misaligned
Over half (55%) of managers surveyed said secure coding was practised and integrated throughout the entire development process, compared to only 43% of developers. Conversely, 36% of developers consider secure coding during development but not the design phase, as opposed to under one-third (32%) of managers.
Secure code an increasing indicator of success
While those surveyed identified ‘application performance’ and ‘functionality and features’ as the most common success metrics within software development (67% and 62% respectively), almost four in five (79%) respondents said the importance of ‘secure code’ was growing in prominence.
Application security is shifting
Almost half of respondents (46%) said development leads and teams should be responsible for application security rather than AppSec teams (24%). Over eight in 10 (81%) developers surveyed said they were accountable for any vulnerable code produced.
Developers motivated to upskill
‘Increased productivity and efficiency’, ‘curiosity’ and ‘avoiding problems caused by insecure code’ were identified as the leading intrinsic motivators to learn secure coding (20%, 14% and 11% respectively). Despite only 10% of respondents listing career advancement as a personal motivator, four in five (81%) managers were more likely to hire talent with secure coding skills.
More training is needed
91% of managers surveyed said they faced greater than average difficulty when implementing secure coding practices within their organisation, despite the overwhelming majority of respondents (97%) believing they were sufficiently trained. Perhaps, this is because almost nine in 10 (88%) developers surveyed said coding securely was challenging.
Madou added, “With OWASP’s Top 10 software vulnerabilities causing more security breaches over the past two decades than any others, now is the time for businesses to upskill developers to gain the knowledge and skills needed to stamp out insecure code and prevent issues from occurring in the first place. ”
“Code is at the heart of everyday interactions, and Secure Code Warrior is focused on championing security-skilled developers who can create amazing, safe software for our connected world .”
To gain early access to the report, ‘Shifting from reaction to prevention: The changing face of application security 2021’, register your interest at scw.buzz/earlyaccess
Methodology
Secure Code Warrior® commissioned Evans Data Corporation, the market intelligence leader within the IT industry, to conduct a global survey of developers and decision-makers actively engaged in software development. In August 2020, 400 respondents were surveyed across North America, India, the United Kingdom, Europe, Australia, New Zealand and South-East Asia.
About Secure Code Warrior
Secure Code Warrior is the developer-chosen solution for growing powerful secure coding skills. By making secure coding a positive and engaging experience for developers as they increase their software security skills, our human-led approach uncovers the secure developer inside every coder, helping development teams ship quality code faster.
Through inspiring a global community of security-conscious developers to embrace a preventative secure coding approach, our mission is to pioneer a people-first solution to security upskilling, stamping out poor coding patterns for good. Learn more at securecodewarrior.com .
View source version on businesswire.com: https://www.businesswire.com/news/home/20210323006113/en/
Link:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
ProAmpac Acquires International Paper’s Bag Converting Operations17.10.2025 16:09:00 CEST | Press release
ProAmpac, a global leader in flexible packaging and material science, has acquired the bag converting operations of International Paper (“IP”), a global leader in sustainable packaging. The acquisition expands ProAmpac’s converting capabilities, further advancing the company’s Fiberization of Packaging® strategy and enhancing its ability to deliver customized bag solutions for the grocery, convenience store, and quick-service restaurant markets. “Global demand for reliable, recyclable paper packaging continues to grow rapidly amid evolving consumer expectations and market trends redefining recyclability,” stated Greg Tucker, ProAmpac founder, vice chairman, and chief executive officer. “ProAmpac’s acquisition of IP’s bag operation supports our Fiberization of Packaging initiatives, helping us better serve customers by extending our expertise in material science to the US west coast with additional capabilities and redundancies,” continued Tucker. “IP’s bag business is strong, being bui
Pimicotinib Treatment Demonstrates Deep and Durable Tumor Responses and Continued Improvements in Pain and Function for Patients with TGCT17.10.2025 16:00:00 CEST | Press release
With median follow-up of 14.3 months, pimicotinib demonstrated increasing ORR over time, from 54% at Week 25 to 76.2%Global Phase 3 MANEUVER study demonstrated ongoing improvements in key secondary endpoints including pain and functionApplication for marketing authorization under review by China National Medical Products Administration (NMPA), with additional applications planned in the U.S. and other marketsNot intended for Canada-, UK- or US-based media Merck, a leading science and technology company, today announced the presentation of longer-term results from the global Phase 3 MANEUVER trial evaluating pimicotinib, an investigational colony stimulating factor-1 receptor (CSF-1R) inhibitor in development by Abbisko Therapeutics Co., Ltd., for the treatment of patients with tenosynovial giant cell tumor (TGCT). This latest analysis showed that, with a median follow-up of 14.3 months, the objective response rate (ORR) for people treated with pimicotinib from the beginning of the stud
Vertex Announces Progress in Povetacicept Development Program and Presentation of New Data at American Society of Nephrology Kidney Week17.10.2025 15:04:00 CEST | Press release
- Food and Drug Administration grants rolling review of Biologics License Application for povetacicept in IgA nephropathy; Vertex to submit first module before end of year - - Second pivotal development program of povetacicept underway with Phase 2b/3 trial initiation in primary membranous nephropathy - - Updated data from RUBY-3 trial of povetacicept accepted for late breaking oral presentation; inaxaplin study design and APOL1-mediated kidney disease related data accepted for poster presentation - Vertex Pharmaceuticals Incorporated (Nasdaq: VRTX) today announced several important updates across its development program for povetacicept (pove), an investigational recombinant fusion protein therapeutic and dual antagonist of the BAFF (B cell activating factor) and APRIL (a proliferation inducing ligand) cytokines. Pove has demonstrated best-in-class potential in IgA nephropathy (IgAN) and primary membranous nephropathy (pMN) and has pipeline-in-a-product potential across a range of B c
Qualcomm Announces Quarterly Cash Dividend17.10.2025 15:00:00 CEST | Press release
Qualcomm Incorporated (NASDAQ: QCOM) today announced a quarterly cash dividend of $0.89 per common share, payable on December 18, 2025, to stockholders of record at the close of business on December 4, 2025. About Qualcomm Qualcomm relentlessly innovates to deliver intelligent computing everywhere, helping the world tackle some of its most important challenges. Building on our 40 years of technology leadership in creating era-defining breakthroughs, we deliver a broad portfolio of solutions built with our leading-edge AI, high-performance, low-power computing, and unrivaled connectivity. Our Snapdragon® platforms power extraordinary consumer experiences, and our Qualcomm Dragonwing™ products empower businesses and industries to scale to new heights. Together with our ecosystem partners, we enable next-generation digital transformation to enrich lives, improve businesses, and advance societies. At Qualcomm, we are engineering human progress. Qualcomm Incorporated includes our licensing
Illumynt Reports Q3 2025 Business Update17.10.2025 14:39:00 CEST | Press release
Q3 2025 was a busy quarter once again for us here at illumynt. In addition to naming a new CEO, we executed on a number of initiatives that are propelling our organization forward. Revenue for the quarter exceeded $30 million- keeping us on track for our 2025 plan. More importantly we executed three different large-scale data center decommission projects with almost no material ending up as scrap. All of the AI-focused enterprise equipment and components recovered from the decommissions were resold at top market value. We head into Q4 with high expectations and our eyes wide open. We’re celebrating the 20-year anniversary of our facility in Hong Kong and looking to add another location in the region to help us process inbound AI data center equipment. Stay tuned for updates. There will be more on the way. View source version on businesswire.com: https://www.businesswire.com/news/home/20251017446548/en/
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom