Application security worries IT professionals

Application security ...

Cliff Saran

Managing Editor

Application security is a key concern for IT professionals, with nearly a third "very worried" about the security of their applications.

81% of IT professionals admitted their applications were vulnerable, according to the survey of 300 IT professionals from Fortify, which provides tools to fix application security.

Hacking is a constant problem with a third of companies reporting being hacked every day.

Firewall software is the main approach to protect applications from hackers, The survey showed 98% of users ran firewalls. 67% of IT professionals used penetration testing and 41% used static analysis software.

The research also found regulations to enforce higher standards of security had a positive benefit. Over a third of security professionals said compliance with regulations such as PCI, Sarbannes Oxley, Basel 2 and the Data Protection Act contributed to a greater awareness of security. They also said the regulations helped to get funds for improving security.

Security threat to AOL, Yahoo and Trillian IM applications>>

Read more on IT risk management

All
News
In Depth
Blog Posts
Opinion
Photo Stories
Videos

Start the conversation

Send me notifications when other members comment.

-ADS BY GOOGLE

SearchCIO

How secure-by-design ITSM processes can be a business differentiator

Secure ITSM procedures are essential to digital organizations' data protection processes. They can also be a bottom line boon, ...
Staring down cybersecurity risks in the digital organization

For cybersecurity strategies to be successful, digitized companies must find the balance between the benefits and risks that come...
Embedded IT, global talent to define future of IT jobs

As more businesses identify as tech companies, what's the future of IT jobs? Many IT teams will work remotely on a gig-by-gig ...

SearchSecurity

Facebook hack the work of spammers, not foreign adversary

News roundup: The Facebook hack was the work of spammers, according to The Wall Street Journal. Plus, 35 million voter records ...
GreyEnergy threat group detected attacking high-value targets

Researchers claim a new threat group called GreyEnergy is the successor to BlackEnergy, but experts are unsure if the evidence ...
Risk & Repeat: Military cybersecurity scrutinized in GAO report

This week's Risk & Repeat podcast discusses the GAO report on vulnerabilities and weaknesses in modern weapons systems and what ...

SearchNetworking

VMware faces strong challengers in cloud systems management

VMware topped IDC's latest vendor ranking in the cloud systems management market. But the analyst firm said the market is too ...
How SD-WAN services could improve application metrics

In this roundup of network blogs, industry insiders dissect SD-WAN's role in application metrics, the future of 5G growth and the...
Comcast gigabit service ready in 39 states

Comcast gigabit cable is now available to 58 million homes and businesses in 39 states. Comcast completed the rollout as AT&T and...

SearchDataCenter

A look at fundamental Linux sed commands

The Linux stream editor is a useful way to run scripts in the data center. With these command examples, you can start to build ...
Minimize downtime during a data center upgrade

End users don't want their productivity interrupted by IT maintenance. With the right technology, testing and planning, you can ...
Navigate data center management software selection

Software evaluation can be a lengthy process, especially with both open source and commercial options. Functionality and support ...

SearchDataManagement

11 features to look for in data quality management tools

As the need for quality data has increased, so have the capabilities of data quality tools. Learn how collaboration, data lineage...
How data lineage tools boost data governance policies

Enterprises can bolster data governance efforts by tracking how and when changes are made to data. Expert David Loshin offers ...
MarkLogic Data Hub Service aims to ease cloud use of NoSQL DBMS

MarkLogic rolled out a cloud-service version of its NoSQL database management system, a move designed to make the technology more...

Close