News

Survey Shows Gap Between Developers, Corporate Security Priorities

Developers who build Web applications are more concerned about security, while corporate resources and processes that increase application security aren’t as forthcoming.

A recent survey of 400 U.S.-based application developers and programmers showed that while those who build Web applications are more concerned about security than ever before, corporate resources and processes that increase application security aren’t as forthcoming.

According to the survey released last week, which was conducted in June by Applied Research and sponsored by security vendor Symantec, 93 percent of the developers and programmers who responded said that secure application development is a higher priority than it was three years ago, with 35 percent ranking it as their No. 1 priority.

But while those building the applications seem to get the need for security, those employing them don't seem to have caught on quite as strongly. For example, of those surveyed, only 65 percent say that security is part of their company's QA process, and only 12 percent report that security is always a priority over meeting deadlines.

Even so, 69 percent said that their employer either emphasizes or strongly emphasizes application security, and 68 percent report that their companies encourage or require their employees to take "continuing education" covering secure coding.

"Many respondents have received secure coding training in one way or another, but the industry still lacks consistent, formalized training both in 'on the job' training and under grad/post grad training," Symantec wrote of the survey’s findings.

About the Author

Becky Nagel serves as vice president of AI for 1105 Media specializing in developing media, events and training for companies around AI and generative AI technology. She also regularly writes and reports on AI news, and is the founding editor of PureAI.com. She's the author of "ChatGPT Prompt 101 Guide for Business Users" and other popular AI resources with a real-world business perspective. She regularly speaks, writes and develops content around AI, generative AI and other business tech. She has a background in Web technology and B2B enterprise technology journalism.

Featured

  • IBM Giving Orgs a Governance Lifeline in Agentic AI Era

    Nearly overnight, organizations are facing brand-new challenges caused by self-directed AI systems (a.k.a. agentic AI). Big Blue is extending them some help.

  • Microsoft Launches Integrated E-mail Security Ecosystem for Defender for Office 365

    Microsoft is expanding its e-mail security capabilities with the launch of a new Integrated Cloud Email Security (ICES) ecosystem for Microsoft Defender for Office 365.

  • Microsoft Joins Workday's AI Agent Partner Network

    Microsoft has become a key partner in Workday's newly launched AI Agent Partner Network, aligning with other industry leaders to integrate AI agents into enterprise workforce systems.

  • LinkedIn CEO Ryan Roslansky To Lead Microsoft's Productivity Initiatives

    In a strategic leadership realignment, Microsoft has appointed LinkedIn CEO Ryan Roslansky to oversee its consumer and small business productivity software division, encompassing Microsoft 365, Teams and AI-driven tools like Copilot.

Most   Popular