Despite multi-layered security systems, Dynatrace has found that 75 percent of CISOs still fear that too many vulnerabilities enter app manufacturing, but only 37 percent of organizations have runtime vulnerability management capabilities.
In a time in which CISOs face more complexity, the need to combine security and the kind of visibility that detects attacks and vulnerabilities in real time has never been greater. According to Dynatraces, a multi-layered security strategy isnt enough to prevent vulnerabilities from finding their way into app production. In today''s world of multicloud environments, multiple coding languages, and open-source software, vulnerability management has become dramatically more difficult.
Despite the existence of a multi-layered security strategy, persistent coverage gaps still allow vulnerabilities to enter production, according to 75% of the senior information security officers (CISOs). However, only 37% of organizations have runtime vulnerability management capabilities. Cloud-native delivery practices enhance business agility but also simplify vulnerability detection.
Recent essential vulnerabilities, including Log4Shell, highlight the issue and the need to combine security and observability, which would lay the foundation for effective new AlSecDevOps practices. The report highlights now more than ever the necessity of strengthening security practices with the kind of visibility that leads to detection of runtime vulnerabilities and the thwarting of real-time attacks.
A survey of 1,300 CISOs conducted in April 2022, which included 200 respondents from the United States, including 100 in the United Kingdom, France, Germany, Italy, the Nordics, the Middle East, Australia, and India, and a total of 50 in Singapore, Malaysia, Brazil, and Mexico.
