Whenever you visit our websites, information may be collected using cookies and similar tools to improve your user experience and to enhance the performance of the website.
Closing this message means you accept the use of cookies.
Organizations Continue to Advance Their Public Cloud Strategies, Including Cloud…
Challenges Managing Cloud-native Applications Across Environments Persist
Misconfigurations and Vulnerabilities Continue to Cause Cybersecurity Incidents…
Managing Application Security and Cloud Workload Controls Can Be Cumbersome,…
Organizational Responsibilities for Securing Cloud-native Applications Vary but…
Increased Investments Are Expected in DevSecOps and Cloud Security Platforms
Conclusion
Research Methodology
Respondent Demographics
Research Report: State of DevSecOps and Cloud Security Platforms: Scaling Security Practices to Accommodate Cloud-native Application Development
Research Report
May 08, 2025
by
Melinda Marks, Emily Marsh, Enterprise Strategy Group Research
As organizations today face pressure to boost their productivity and scale while efficiently optimizing resources, they are increasingly utilizing cloud services to deliver cloud-native applications. Cybersecurity teams recognize the impact of security incidents on their cloud-native applications, including application downtime, business disruption, compliance fines, and negative brand reputation. They need effective cybersecurity solutions that address security risk from development to deployment to ensure security teams can support business growth.
The efforts to modernize application development utilizing cloud services are focused on optimizing efficiency for growth and scale. However, having separate, siloed security tools that work in different parts of the software development lifecycle works against the speed and efficiency that organizations are trying to achieve. As a result, organizations need to look for ways to gain unified visibility and control to efficiently manage risk and rapidly respond to threats and attacks by incorporating DevSecOps and utilizing cloud security platforms.
To gain insights into these trends, Enterprise Strategy Group surveyed 373 IT, cybersecurity, and application development professionals in North America (U.S. and Canada) responsible for evaluating or purchasing cloud security technology products and services.
Page Count: 27
Table of Contents
Executive Summary
Report Conclusions
Introduction
Research Objectives
Research Findings
Organizations Continue to Advance Their Public Cloud Strategies, Including Cloud-native Application Development
Challenges Managing Cloud-native Applications Across Environments Persist
Misconfigurations and Vulnerabilities Continue to Cause Cybersecurity Incidents in the Cloud-native Application Stack
Managing Application Security and Cloud Workload Controls Can Be Cumbersome, Which Could Be Mitigated via Consolidation
Organizational Responsibilities for Securing Cloud-native Applications Vary but Generally Involve Cybersecurity Teams
Increased Investments Are Expected in DevSecOps and Cloud Security Platforms
