MA-SECURE-CODE-WARRIOR
New research from Secure Code Warrior ® , the global secure coding company, has revealed an attitudinal shift in the software development industry, with organisations bucking traditional practices for DevOps and Secure DevOps.
The global survey of professional developers and their managers found seven in 10 organisations (70%) recognise the importance of secure coding practices, with results indicating an industry-wide shift from reaction to prevention is underway.
Dr. Matias Madou, Chief Technology Officer and Co-Founder at Secure Code Warrior, said, “We are seeing a fundamental shift in mindsets across the world, as the industry slowly moves from reactive, band-aid solutions rolled out after a breach, to the proactive and human-led practice of writing quality software that is intrinsically free from vulnerabilities right from the very first keystroke. ”
“This research shows that ‘secure code’ is becoming synonymous with ‘quality code’ within software development, and security is becoming the responsibility of development teams and leaders—not just AppSec professionals, ” he said.
Secure coding seen as ‘reactive’
Reactive practices like using tools on deployed applications and manually reviewing code for vulnerabilities were the top two practices respondents associated with coding securely. However, a proactive shift in mindset was evidenced across the globe, with more than half (55%) of the developers surveyed also recognising secure coding as the active, ongoing practice of writing software protected from vulnerabilities.
Managers and developers are misaligned
Over half (55%) of managers surveyed said secure coding was practised and integrated throughout the entire development process, compared to only 43% of developers. Conversely, 36% of developers consider secure coding during development but not the design phase, as opposed to under one-third (32%) of managers.
Secure code an increasing indicator of success
While those surveyed identified ‘application performance’ and ‘functionality and features’ as the most common success metrics within software development (67% and 62% respectively), almost four in five (79%) respondents said the importance of ‘secure code’ was growing in prominence.
Application security is shifting
Almost half of respondents (46%) said development leads and teams should be responsible for application security rather than AppSec teams (24%). Over eight in 10 (81%) developers surveyed said they were accountable for any vulnerable code produced.
Developers motivated to upskill
‘Increased productivity and efficiency’, ‘curiosity’ and ‘avoiding problems caused by insecure code’ were identified as the leading intrinsic motivators to learn secure coding (20%, 14% and 11% respectively). Despite only 10% of respondents listing career advancement as a personal motivator, four in five (81%) managers were more likely to hire talent with secure coding skills.
More training is needed
91% of managers surveyed said they faced greater than average difficulty when implementing secure coding practices within their organisation, despite the overwhelming majority of respondents (97%) believing they were sufficiently trained. Perhaps, this is because almost nine in 10 (88%) developers surveyed said coding securely was challenging.
Madou added, “With OWASP’s Top 10 software vulnerabilities causing more security breaches over the past two decades than any others, now is the time for businesses to upskill developers to gain the knowledge and skills needed to stamp out insecure code and prevent issues from occurring in the first place. ”
“Code is at the heart of everyday interactions, and Secure Code Warrior is focused on championing security-skilled developers who can create amazing, safe software for our connected world .”
To gain early access to the report, ‘Shifting from reaction to prevention: The changing face of application security 2021’, register your interest at scw.buzz/earlyaccess
Methodology
Secure Code Warrior® commissioned Evans Data Corporation, the market intelligence leader within the IT industry, to conduct a global survey of developers and decision-makers actively engaged in software development. In August 2020, 400 respondents were surveyed across North America, India, the United Kingdom, Europe, Australia, New Zealand and South-East Asia.
About Secure Code Warrior
Secure Code Warrior is the developer-chosen solution for growing powerful secure coding skills. By making secure coding a positive and engaging experience for developers as they increase their software security skills, our human-led approach uncovers the secure developer inside every coder, helping development teams ship quality code faster.
Through inspiring a global community of security-conscious developers to embrace a preventative secure coding approach, our mission is to pioneer a people-first solution to security upskilling, stamping out poor coding patterns for good. Learn more at securecodewarrior.com .
View source version on businesswire.com: https://www.businesswire.com/news/home/20210323006113/en/
Link:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
INNIO and KMW Secure Grid Stability and Data Center Supply With a Peaking Power Plant7.11.2025 09:00:00 CET | Press release
INNIO and KMW (Kraftwerke Mainz-Wiesbaden AG) are building a 54-MW peaking power plant for grid stabilization Additional safeguarding of the power supply for the “Green Rocks” data center project INNIO Group has signed a contract with KMW (Kraftwerke Mainz-Wiesbaden AG) for a new 54-MW peaking power plant. A total of twelve modular energy systems from INNIO are intended to be operated at the site. Part of the plant’s capacity is expected to be available for the “Green Rocks” data center, which is being built by KMW and Norwegian data center operator Green Mountain. INNIO’s decentralized energy solutions serve as backup in case of a blackout due to grid failure. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251107090386/en/ Visualization of the future Green Rocks data center (c) KMW The power plant is scheduled to be commissioned by the end of 2027. “The partnership between INNIO and KMW is a strategic milestone for energy s
Suzano Reports Increased Operational Efficiency With Lower Cash Cost in the Third Quarter of 20256.11.2025 23:58:00 CET | Press release
Ongoing improvement in cost competitiveness: cash production costs continue to reduce (down 7% Y-o-Y), due to the increased contribution from the Ribas do Rio Pardo unit. Continued progress in integrating recent acquisitions: Suzano Packaging reported its first positive Adjusted EBITDA from the US operations acquired one year ago. Suzano, the world’s largest pulp producer, announces its results for the third quarter of 2025 (3Q25), reporting sales of 3.6 million tonnes of pulp and paper combined, a 20% increase on the same quarter last year (3Q24). The positive result is driven by the operations of the Ribas do Rio Pardo pulp mill, inaugurated in 2024, and by the integration of paper production from assets acquired in the United States in October 2024. The cash cost of pulp production (excluding downtime) was R$801 per tonne, a 7% reduction compared to 3Q24, another positive highlight of the quarter. The results reflect the continuation of the downward trend in production costs and the
Vedanta Resources Launches CopperTech Metals to Bolster U.S. Copper Security and Advance Technology and Infrastructure Transformation6.11.2025 17:45:00 CET | Press release
CopperTech Metals Combines World-Class Konkola Mines' Copper and Cobalt Producing Heritage with Cutting-Edge Mining Technology and Artificial Intelligence to Advance U.S. Critical Mineral Independence and Serve America's Growing Infrastructure Needs$1.5 Billion Investment Program to Leverage Advanced Mining and Cutting-Edge AI-Driven Resource Identification and Extraction Technology to Propel Konkola's Operations into One of the Largest in the World Vedanta Resources Limited ("Vedanta") today announced the launch of CopperTech Metals Inc. ("CopperTech" or the "Company"), a U.S.-domiciled company with a mission to 'Power the Copper Century' and to bolster America's copper security needs while capitalizing on surging copper demand driven by artificial intelligence, data center expansion, grid modernization, defense technologies and industrial onshoring requirements. CopperTech will1 own and operate the Konkola Copper Mines in Zambia, one of the highest-grade copper producing assets in th
NJ Bio Bridges the Translation Research Gap with the Asset Purchase and Integration of L2P®Services6.11.2025 17:11:00 CET | Press release
NJ Bio, Inc., a premier contract research and clinical manufacturing service provider in Princeton, New Jersey has announced the asset purchase and full integration of the research services of L2P Research Labs® (“Lab to Pharmacy”), further expanding its service portfolio, and bridging the translational research gap. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251106703527/en/ NJ Bio, Inc. now offers translational research services after completing asset purchase and full integration of the services of L2P® Research Labs, enhancing the discovery-to-development pipeline Currently, the attrition rate of biological molecules moving past phase 1 clinical trials is very high and the way to overcome this challenge is through translational research. NJ Bio specializes in preclinical and early-phase clinical research and development, with a primary focus on ADCs, bioconjugation, custom synthesis, oligonucleotides, and mRNAs. Howe
DevvStream Reports Fiscal Year 2025 Results and Advances Digital-Asset and Tokenization Strategy6.11.2025 17:01:00 CET | Press release
Company strengthens balance sheet, launches disciplined digital-asset treasury, and sets stage for acquisition-led growth in sustainability markets DevvStream Corp. (Nasdaq: DEVS) (“DevvStream” or the “Company”), a leading carbon management and environmental-asset monetization firm, today announced financial results for its fiscal year ended July 31, 2025, and provided an update on strategic initiatives designed to enhance liquidity, expand technology capabilities, and position the Company for scalable, acquisition-driven growth. Fiscal 2025 Highlights Completed Nasdaq listing and de-SPAC transaction, establishing DevvStream as one of the few publicly traded pure plays in carbon and renewable-energy asset monetization. Closed initial $10 million tranche under the Helena $300 million convertible-note facility, providing liquidity to launch the Company’s digital-asset treasury. Reported initial revenue as the Company begins monetizing its environmental-asset pipeline. Successfully comple
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom