Application security is arguably the biggest cyber threat, responsible for 90 percent of security incidents, according to the Department of Homeland Security. Yet it suffers from not-my-job syndrome, or, as SANS put it in its 2015 State of Application Security report, “Many information security engineers don’t understand software development — and most software developers don’t understand security.”
To read this article in full or to leave a comment, please click here