STOCK TITAN

New Research From VMware Reveals Deepening Divide Between Developer and Security Teams

Rhea-AI Impact
(Low)
Rhea-AI Sentiment
(Neutral)
Tags
Rhea-AI Summary

VMware announced a study revealing a disconnect between IT, security, and development teams in adopting a Zero Trust security model. Conducted by Forrester Consulting, the survey of 1,475 IT and security leaders found that 52% of developers feel stifled by security policies. Only 22% strongly understand these policies, while 27% are excluded from decision-making. Collaborative organizations see a five-day faster development cycle. Despite improved leadership focus, 37% report ineffective collaboration. The study emphasizes shared priorities to enhance security integration in the development process.

Positive
  • 53% expect security and development teams to unify within three years.
  • 70% believe that better collaboration creates more secure applications.
  • 71% agree that cross-team alignment reduces silos.
Negative
  • 52% of developers feel security policies stifle innovation.
  • Only 22% of developers understand security policies well.
  • 27% of developers are not involved in security policy decisions.
  • 37% of decision makers find security and development teams ineffective in collaboration.

Security teams must rethink processes to aid innovation and customer experience

PALO ALTO, Calif.--(BUSINESS WIRE)-- VMware, Inc. (NYSE: VMW), a leading innovator in enterprise software, today announced findings from a study on the relationship between IT, security, and development teams as organizations adopt a Zero Trust security model. The study, titled “Bridging the Developer and Security Divide” and conducted by Forrester Consulting on behalf of VMware, found that security is still perceived as a barrier in organizations, with 52% of developers believing that security policies are stifling their innovation.

Forrester Consulting surveyed 1,475 IT and security leaders and discovered that only one in five (22%) developers strongly agree that they understand which security policies they are expected to comply with. Alarmingly, more than a quarter (27%) of the developers surveyed are not involved at all in security policy decisions, despite many of these greatly impacting their roles. Organizations where security and development teams have a positive relationship can accelerate the software development lifecycle five business days faster than those without – demonstrating how speed to market and competitive advantage are at stake here.

Seventy-three percent of respondents agreed that their senior leadership focuses more on strengthening the relationship between development and security than they did two years ago, but relationships are still strained. In fact, more than one in three (37%) decision makers reported their organizations’ teams are not effectively collaborating or taking strides to strengthen relationships between security and development teams. Lack of role definition for development teams, lack of communication between teams and competing priorities have major impacts on collaboration.

“Our research shows that security needs a perception shift,” said Rick McElroy, principal cybersecurity strategist, VMware. “Rather than be seen as the team that only swoops in to fix breaches and leaks, or who ‘gets in the way’ of innovation, security should be embedded across people, processes, and technologies. Security needs to be a team sport that works alongside IT and developers to ensure protection across clouds, apps and all digital infrastructure. We have to develop a culture where all teams have shared interests and common goals or metrics, and where they speak one language. There’s overwhelming value to the business when IT, security, and developers are all part of the decision making, design, and execution.”

Shared team priorities and engagement will pave the way forward and there’s already progress being made on this front. More than half (53%) of respondents expect security and development teams to be unified within three years. And 42% expect security to become more embedded in the development process in that same period. There’s a broader acknowledgment that cross-team alignment empowers businesses to reduce team silos (71%), create more secure applications (70%) and increase agility to adopt new workflows & technologies (66%).

The full study, complete with recommendations to bridge the divide between developer and security teams, can be downloaded here.

Methodology

VMware commissioned a survey, undertaken by an independent research organization, Forrester Consulting, in April 2021. 1,475 IT and security managers and above (including CIOs and CISOs) with responsibility for security strategy and decision-making were surveyed with an additional 5 qualitative interviews with IT and security and development VP and above (including CIOs and CISOs) with responsibility for development or security strategy decision-making. Respondents were from a range of industries including technology services, manufacturing, financial services, retail and healthcare. The research was carried out across 26 countries around the world, including: Australia, Belgium, Canada, China, France, Finland, Germany, India, Italy, Israel, Japan, Norway, New Zealand, Netherlands, Poland, Russia, Saudi Arabia, South Africa, Spain, Singapore, South Korea, Turkey, United Kingdom, United States, UAE.

About VMware

VMware software powers the world’s complex digital infrastructure. The company’s cloud, app modernization, networking, security, and digital workspace offerings help customers deliver any application on any cloud across any device. Headquartered in Palo Alto, California, VMware is committed to being a force for good, from its breakthrough technology innovations to its global impact. For more information, please visit https://www.vmware.com/company.html.

Media Contacts

Samantha Mayowa

VMware Global Communications

+ 1 (781) 552-3062

smayowa@vmware.com

Kerry Tuttle

VMware Global Communications

+1 (470) 247-1987

ktuttle@vmware.com

Source: VMware, Inc.

FAQ

What does VMware's study reveal about developer security perceptions?

VMware's study found that 52% of developers believe security policies hinder their innovation.

How many developers understand security policies according to VMware's study?

Only 22% of developers strongly agree that they understand the security policies they must comply with.

What impact does collaboration have on software development at VMware?

Organizations with effective security and development collaboration can accelerate the software lifecycle by five business days.

What percentage of organizations expect security and development teams to unify?

53% of respondents anticipate that security and development teams will become unified within three years.

What are the challenges in collaboration between security and development teams?

Challenges include lack of role definition, poor communication, and competing priorities, affecting team collaboration.

VMware, Inc.

NYSE:VMW

VMW Rankings

VMW Latest News

VMW Stock Data

61.52B
219.23M
36.16%
49.65%
2.37%
Software - Infrastructure
Technology
Link
United States
Palo Alto