Latest software development publications
New research from Invicti Security finds that 70% of development teams always or frequently skip security steps as a result of time pressures when finishing projects. Obvious issues arise when essential steps are missed, with the study also discovering that one in three issues under remediation reach production without being caught in the development or test… Read More
The world of enterprise software development came of age with the emergence of ‘single purpose’ software applications aligned to a specific business function. It started with accounting programmes in finance, but with time, many areas such as manufacturing, supply chain and inventory management also benefited from the emergence of purpose-built applications.
Monolithic structures like ERPs, for instance, were designed to increase efficiency by transmitting information across business functions. Problems started creeping in, however, when businesses customised these applications to cater to their own unique requirements.
More often than not, increased customisation rendered these applications slow and clunky since they were too rigid to scale, making frequent iterations difficult. The IT department that was supposed to incite productivity became the reason for falling behind.
In a world where one data breach is all it takes to destroy a business, only the prepared and vigilant ones that embrace security in their operations will survive.
Yet, for many organisations, successfully integrating security into the software delivery lifecycle is still a huge obstacle. As illustrated in this year’s Puppet’s State of DevOps Report, which revealed that only 22 percent of companies at the highest level of security integration have reached an advanced stage of DevOps maturity. Delivering innovation shouldn’t result in the need to compete head-to-head with safeguarding customer data.
While there is a myriad of security practices and solutions in the market, why is it so hard to integrate security into software development?