The Transform Technology Summits begin October thirteenth with Low-Code/No Code: Enabling Enterprise Agility. Register now!
Executives from the boardroom and the C-suite are realizing the damaging impact software provide chain assaults can have on their organizations, however they aren’t taking motion. According to a current report from Venafi, senior IT executives agree (97%) that software construct processes will not be safe sufficient, but there is a disconnect in relation to which group is responsible for driving security modifications… 61% of executives mentioned IT security teams ought to be responsible for software security, whereas 31% mentioned growth teams ought to be.
This lack of consensus is hindering efforts to enhance the security of software construct and distribution environments and exposing each firm that buys industrial software to SolarWinds-style provide chain assaults. At the identical time, security teams, who are strapped for price range and assets, hardly ever have visibility or management into the security controls in software growth environments. To make issues worse, there is no customary framework that will assist them consider the security of the software they use.
The survey additionally discovered that 94% of executives consider there ought to be clear penalties for software distributors that fail to guard the integrity of their software construct pipelines. These penalties could possibly be penalties comparable to fines and larger authorized legal responsibility for firms confirmed to be negligent. It may appear stunning that executives are encouraging such a observe, however they perceive that clear penalties will pressure software distributors to shift away from the ‘build fast, fix security later’ mentality that leaves their prospects and companions in danger.
Venafi’s survey evaluated the opinions of greater than 1,000 IT and growth professionals, together with 193 executives with accountability for each security and software growth, and revealed a obvious disconnect between government concern about software provide chain security and government motion.
Read the total report by Venafi.
VentureBeat’s mission is to be a digital city sq. for technical decision-makers to realize information about transformative expertise and transact.
Our web site delivers important info on knowledge applied sciences and methods to information you as you lead your organizations. We invite you to grow to be a member of our group, to entry:
- up-to-date info on the themes of curiosity to you
- our newsletters
- gated thought-leader content material and discounted entry to our prized occasions, comparable to Transform 2021: Learn More
- networking options, and extra
Become a member