39% of software developers say supply chain security is essential
Security Magazine –
A recent report by Chainguard examined software supply chain security.
The findings reveal that 70% of developers and 52% of chief information security officers (CISOs) consider software supply chain security a top priority in their roles.
Additionally, 72% of developers see themselves as security-conscious, while 50% of CISOs rate developers as security-conscious.
However, only 43% of developers believe that CISOs are very familiar with container images in their work compared to other aspects such as open-source software libraries and source code repositories.
The report highlights that 92% of developers find software supply chain security very important to their day-to-day work, with 39% considering it absolutely essential.
Similarly, 93% of CISOs view effective software security as critical to their organizational maturity and risk mitigation strategies, while 96% believe it helps meet government and regulatory requirements.
Both CISOs and developers identify challenges in ensuring software supply chain security, including a high number of false positive vulnerability alerts from scanners (reported by 36% of CISOs and 34% of developers), consumption of vulnerable software, and a lack of cohesion between CISOs and developers.
The full report can be accessed for further details and insights.
Link: https://securityshelf.com/2023/11/14/39-of-software-developers-say-supply-chain-security-is-essential/