“How do you scale your business in an agile way”

Rohde & Schwarz Cybersecurity and Agora DSI unveil their joint study on “How do you scale your business in an agile way”

Companies need to implement security when migrating to the cloud but also while developing next generation applications - today, the DevOps market is growing due to a shift in responsibility from development teams to integrate application security at the design phase.

Paris, June 29, 2021 - Rohde & Schwarz Cybersecurity and Agora DSI unveil their joint study (based on 150 CIO interviews « Comment faites-vous évoluer votre business de façon agile ? » May 2021) on the new cybersecurity habits of business leaders. The study highlights a number of trends in the field of enterprise cybersecurity. In recent years, CIOs have seen a sharp increase in attacks, which has led executives to migrate more and more to the cloud.

In 2021, 87.5% of organizations will deploy their applications in the cloud. Of these organizations, 47% use the hybrid cloud with a major use of AWS (40%) and Azure (40%) and very little use of GCP (5%), 15% use the multi-cloud model with a preference for Azure and AWS, 17.5% use only the public cloud and 7.5% the private cloud.

This migration to the cloud brings many benefits such as:

  • Scale applications quickly and easily
  • Huge cost savings with pay-as-you-go
  • Agile deployment with different models
  • High automation by reducing human error

But these changes also bring their own set of cyber threats, and it is imperative that companies adapt and protect themselves. For example, 77.5% of the companies surveyed have integrated DevOps into their organization. In fact, as of 2020, Rohde & Schwarz Cybersecurity has developed a DevSecOps strategy that aims to help DevOps teams integrate application security from the design phase, building control capabilities into their APIs and applications. Its aim is to provide security, simplicity and visibility. As a result, 55.6% have implemented a DevSecOps approach. Only 25% have done so to comply with GDPR or industry regulations, 37.5% to reduce their attack surface more effectively, and 37.5% to build applications faster to accelerate the time to market for their products and solutions. Finally, 62.5% of those not concerned are thinking about implementing a DevSecOps approach in the near future.

Today, the DevOps market is growing due to a shift in responsibility from development teams to integrate application security at the design phase. As a result, 72.5% of organizations are insecure or still lacking security in their DevOps lifecycle. More than half face cultural resistance, 20% face a challenge in integrating the right tools, 15% face a lack of knowledge, and 12.5% face a focus on application delivery speed.

Improvement of security in the scalable process

4 steps have become fundamental to optimize security:

1. Automate tasks in small iterations

2. Detecting defects before production

3. Build and deploy quickly

4. Get feedback to improve solutions

API management is mainly used to move security to the left, followed by the web application firewall (WAF). Unfortunately, Statistic Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) are no longer sufficient to provide application security. And traditional WAFs, managed by production/operation teams, only protect the runtime phase. However, these methods are still among the most widely used. As part of the strategy to provide greater security, simplicity and visibility, Rohde & Schwarz Cybersecurity has launched R&S®Trusted Application Factory, a cloud-native application protection solution deployed as a container and intended for DevSecOps teams.

Best performance of a DevSecOps team

API security should always be a priority. And it is crucial to integrate security into the build phase while improving collaboration. For DevSecOps teams, the rapid evolution of technologies remains a daily challenge. Thus, there is a real need for evangelism to federate energies and new ideas within organizations. The DevSecOps Community website has been launched to support CIOs. Everyone can register to be informed of the latest developments in application security, interact with their peers and let the experts contribute to the success of the teams.






我同意,在网站Imprint中提到的Rohde & Schwarz GmbH & Co. KG和罗德与施瓦茨实体及分支机构 可出于营销和广告之目的(例如提供特价优惠和折扣促销信息)而通过选定渠道(电子邮件或邮政信件)与我联系并提供相关信息,包括但不限于测试与测量、安全通信、监测与网络测试、广播电视与媒体以及网络安全领域的产品和解决方案相关信息


您可以随时发送电子邮件至 news@rohde-schwarz.com 撤销此同意声明,邮件主题注明“Unsubscribe”即可。此外,我们发送给您的每一封电子邮件中都含有电子邮件取消订阅链接。有关个人数据使用和撤销程序的详情,请参阅“隐私声明”

An error is occurred, please try it again later.