DevSecOps Poll Results

What is the biggest roadblock implementing DevSecOps practices?
Time and resources
47%
22
Technology stack is old
13%
6
Security isn't a priority
4%
2
Lack of executive buy-in
36%
17
What is the earliest stage you identify and remediate security issues?
Code (IDE, CLI, etc.)
37%
17
Commit (VCS)
4%
2
Build / Deploy (CI/CD)
35%
16
Running environment
24%
11
Developers in your organization currently play an active role in:
Infrastructure security
4%
2
Application security
20%
9
Both
48%
22
Neither
28%
13
Top benefit of embedding security earlier in the dev lifecycle?
Fewer security alerts/vulnerabilities
43%
20
Enhanced security posture
33%
15
Quicker security approvals
9%
4
Faster app deployments
15%
7
Does your dev team have the needed app security resources?
Yes - Well Equipped
19%
9
Yes - In most cases
30%
14
Yes - Somewhat
28%
13
No - Lacking in most cases
26%
12
Where are you on your DevSecOps journey?
Organizational adoption
15%
7
Individual dev team adoption
39%
18
Piloting or investigating
35%
16
No plans
11%
5