Security is an undeniable necessity for the survival and success of any company. A GitLab survey found 68% of security professionals feel fewer than half of developers can spot security vulnerabilities later in the SDLC. 70% of developers say they struggle to write secure code and need better guidance. Organizations must go beyond standard security training, which teaches the basics technicalities like XSS or SQLi, and should equip developers with strategic training that is both relevant and fits into their existing workflows. Organizations must ensure that their code analysis processes are not only fast and accurate but that security workflows also fit with the way developers operate.
Source: https://www.helpnetsecurity.com/2021/04/19/digital-business-mindset/