AppSec in Review Podcast: How Developers Respond to Security Findings
Two sec experts talk about developers' security skills, their responsiveness to security assessments, and secure development best practices.
Join the DZone community and get the full member experience.Join For Free
We (Veracode) recently published the State of Software Security Developer Guide, based on real application security testing data. Among the key takeaways, the data in the report offers strong evidence that eLearning, security training, and DevSecOps practices have a positive effect on developers' effectiveness at fixing flaws in their code. In this episode of the AppSec in Review podcast, Evan Schuman and CA Veracode's Pete Chestna discuss the report's key points, including what developer mitigations say about how developers respond to security findings.
Listen to the 10-minute podcast to hear Pete's take on what the research shows about developers' security skills, their responsiveness to security assessments, and secure development best practices.
Published at DZone with permission of John Zorabedian, DZone MVB. See the original article here.
Opinions expressed by DZone contributors are their own.