Raising Good Software: Is It Nature or Nurture?

We know most software is insecure. We also know that organizations are struggling to remediate these flaws in a timely fashion. How did we get to this state of software security, and what’s the best way to address it? Are some apps by their very nature simply less secure? Or are we just not nurturing the security of apps correctly? We investigated this question when analyzing our scanning data from 130,000 apps for our annual State of Software Security report. During this breakout session, we will highlight the findings and examine: •What’s more important in application security – nature or nurture? •Is software security related to the attributes of the app that the developer inherits – its security debt, its size? •Or is software security dependent on the actions of developers – how frequently they are scanning for security or how security is integrated into their processes? •And if it is indeed the “nature” of apps that affects security more, is there anything developers or security pros can do to improve security outcomes? Join us for an insightful talk on software security today, and practical steps you can take to reduce your risk of breach. Interested in learning more about the findings from this year's SOSS report? Tune into sessions from this year's Hot SOSS virtual summit: https://www.veracode.com/hot-soss-virtual-summit