Date : 18-Nov-2020
Location: Singapore
Organization:
Micro Focus delivers enterprise software to empower our 40,000 customers worldwide to digitally transform.
Key Takeaways:
- Micro Focus today released DevSecOps: A framework for digital innovation, an IDC InfoBrief featuring findings from the IDC Asia Pacific 2020 DevSecOps Survey.
- The survey reveals that the ongoing COVID-19 outbreak has driven the demand for secure software development initiatives, according to 74% of the respondents in Asia Pacific (APAC).
- DevSecOps refers to a set of practices that add security to the software development supply chain from the planning stage to deployment, delivery, and beyond.
Offering:
Micro Focus offers a set of tools for Agile & DevOps Management,which includes release control and automated deployment.
Spokepersons:
- Stephen McNulty, President of Micro Focus Asia Pacific and Japan,said, the key in building digital trust admist the vast digitalization landscape is for organisations will need to quickly speed up DevSecOps adoption through continuous and automated security testing.
- Gina Smith, IDC Asia/Pacific's DevOps Research lead,said,the adoption of DevSecOps is the right direction for organisations looking to adopt an end-to-end security approach and build better digital capabilities.
Insights:
The rise of DevSecOps comes at a time when IT leaders are faced with an increasingly active cyberthreat landscape, coupled with higher consumer expectations of digital offerings and application usage due to a sharp increase in online activities. However, a majority of APAC organisations are not equipped to tackle the issue at hand, with 55% of the respondents ranking modest to low in terms of their DevSecOps maturity levels. The survey found that while there is awareness of the benefits of engaging in DevSecOps practices amongst IT leaders, many obstacles remain on the path to the full adoption. The key findings of the survey include:
- About 40% of Asia Pacific leaders on average say they’ve united DevOps teams and now are adding security to the mix. Software efficiency is the No. 1 driver. India (53%) and China (51%) are leading integration efforts.
- The top obstacles to DevSecOps adoption are spread across the following three pillars: budget issues (15%), dearth of talent or skills (13%), and difficulty automating across hybrid infrastructures (13%).
- Amongst APAC organisation, DevOps teams are still primarily responsible for application security testing, followed by Security teams.
- The most common security tools currently in use are software composition analysis (24%), followed by interactive application security testing (19%), and static application security testing (18%).
IDC surveyed 1,178 enterprise leaders in 14 Asia/Pacific regions—India, China, Hong Kong, Taiwan, Southeast Asia, Australia and New Zealand, Japan and Korea—about their DevSecOps activities, plans, challenges, and processes. The full IDC InfoBrief, DevSecOps: A framework for digital innovation, is available here.
Best Practices:
- Organisations to quickly speed up DevSecOps adoption through adoption of continuous and automated security testing,to quickily capture new market horizons as a result of Covid-19 induced digital landscape, and for relationship and digital trust building.
- To fully embed security into the continuous delivery pipeline,by the abandoning siloed functional teams in favour of shared responsibilities between developers and security experts..
Editor's comments:
- Think of a DevOps as the process of managing software project development aided by a platform- without a platform, it is not called DevOps but merely project management.
- On the other hand,DevSecOps is DevOps with embedded cyber security culture for product delivery - meaning, to make sure that the output is less likely to have zero-day cyber security loopholes.
 |
| Embed security pipeline into agile software development |
Photo by Shuniya Studios on Unsplash
Comments