This document discusses secure coding practices and software development lifecycles. It summarizes a survey conducted by Enterprise Management Associates (EMA) on secure coding. The survey found that 69% of organizations have software development lifecycles (SDLCs) that miss critical security steps, and only 87.6% train employees on secure coding practices. EMA believes the best approach is using code reviews, code scanning tools, and continuous third-party training. While a "shift left" security approach is effective, adopting any security model is better than the incomplete SDLCs used by many organizations.
Gen AI in Business - Global Trends Report 2024.pdf
Secure Coding Practices – Growing Success or Zero-Day Epidemic
1. | @ema_research
Secure Coding Practices –
Growing Success or Zero-
Day Epidemic?
Ken Buckler, CASP, Research Analyst
Information Security, Risk, and Compliance Management
Enterprise Management Associates
KBuckler@enterprisemanagement.com
Sponsored by