Skip to main content

Urgency Grows for Observability and Security Convergence

Organizations find increasing difficulty in maintaining software reliability and security as the demand for continuous release cycles and the rising complexity of cloud-native environments create more risk for undetected defects and vulnerabilities to escape into production, according to the 2023 Global CIO Report, Observability and Security Convergence: Enabling Faster, More Secure Innovation in the Cloud, from Dynatrace.

CIOs and senior DevOps managers are looking to DevSecOps processes, the convergence of observability and security, and the increased use of AI and automation to balance accelerated innovation with reliability and security.

The research reveals the following:

■ 90% of organizations say digital transformation has accelerated in the past 12 months.

■ 78% of organizations deploy software updates into production every 12 hours or less, and 54% say they do so at least once every two hours.

■ DevOps teams spend nearly a third (31%) of their time on manual tasks involving detecting code quality issues and vulnerabilities, reducing the time spent on innovation.

■ 55% of organizations make tradeoffs between quality, security, and user experience to meet the need for rapid transformation.

■ 88% of CIOs say the convergence of observability and security practices will be critical to building a DevSecOps culture, and 90% say increasing the use of AIOps will be key to scaling up these practices.

"It's difficult for teams to accelerate the pace of innovation while also maintaining the highest quality and security standards," said Bernd Greifeneder, Founder and CTO at Dynatrace. "More frequent software deployments, combined with complex cloud-native architectures, make it easier for errors and vulnerabilities to escape into production where they impact customer experience and create risk. There simply aren't enough hours in the day for teams to test code as thoroughly as when they had only a single monthly deployment, but there's no margin for error in today's ultra-competitive, always-on economy. Something has to change."

Image removed.

Additional findings from the survey include:

■ Organizations plan to increase their spending on automation across development, security, and operations by 35% by 2024, as they invest more in continuously testing software quality (54%) and security (49%) in production, automatic vulnerability detection and blocking (41%), and automating release validation (35%).

■ 70% of CIOs say they need to improve their trust in the accuracy of AI's decisions before they can automate more of the CI/CD pipeline.

■ 94% of CIOs say extending a DevSecOps culture to more teams is key to accelerating digital transformation and driving faster, more secure software releases.

"Organizations know that manual approaches aren't scalable," continued Greifeneder. "Teams can't afford to waste time and effort chasing false positives, searching for vulnerabilities whenever a new threat alert appears, or conducting forensics to understand whether data has been compromised. They need to work together to drive faster, more secure innovation. Automation and modern delivery practices such as DevSecOps are key to this, but teams need to trust that their AI is reaching the right conclusions about the impact of a particular vulnerability. To accomplish this, organizations require a unified platform that can converge observability and security data to eliminate the silos between teams. By bringing their data together and retaining its context, DevOps and security teams can unlock the insights they need through causal AI. This enables them to harness intelligent automation to rapidly deliver high-performing and secure applications that delight their users."

Methdology: The report is based on a global survey of 1,300 CIOs and senior IT practitioners involved in DevOps management in large organizations with more than 1,000 employees, conducted by Coleman Parkes and commissioned by Dynatrace. The sample included 200 respondents in the US, 100 in Latin America, 600 in Europe, 150 in the Middle East, and 250 in Asia Pacific.

The Latest

Gartner highlighted the six trends that will have a significant impact on infrastructure and operations (I&O) for 2025 ...

Since IT costs can consume a significant share of revenue ... enterprises should (but often don't) pay close attention to the efficiency of IT operations at scale. Improving operational cost structures even fractionally can yield major savings for larger organizations, often in the tens of millions of dollars ...

Being able to access the full potential of artificial intelligence (AI) and advanced analytics has become a critical differentiator for businesses. These technologies allow for more informed decision-making, boost operational efficiency, enhance security, and reveal valuable insights hidden within massive data sets. Yet, for organizations to truly harness AI's capabilities, they must first tap into an often-overlooked asset: their mainframe data ...

The global IT skills shortage will persist, and perhaps worsen, over the next few years, carrying a collective price tag of more than $5 trillion. Organizations must search for ways to streamline their IT service management (ITSM) workflows in addition to, or even apart from, hiring more staff. Those who don't find alternative methods of ITSM efficiency will be left behind by their competitors ...

Embedding greater levels of deep learning into enterprise systems demands these deep-learning solutions to be "explainable," conveying to business users why it predicted what it predicted. This "explainability" needs to be communicated in an easy-to-understand and transparent manner to gain the comfort and confidence of users, building trust in the teams using these solutions and driving the adoption of a more responsible approach to development ...

Modern people can't spend a day without smartphones, and businesses have understood this very well! Mobile apps have become an effective channel for reaching customers. However, their distributed nature and delivery networks may cause performance problems ... Performance engineering can be a solution.

Image
Cigniti

Industry experts offer predictions on how Cloud, FinOps and related technologies will evolve and impact business in 2025. Part 3 covers FinOps ...

Industry experts offer predictions on how Cloud, FinOps and related technologies will evolve and impact business in 2025. Part 2 covers repatriation and more ...

Industry experts offer predictions on how Cloud, FinOps and related technologies will evolve and impact business in 2025 ...

Industry experts offer predictions on how NetOps, Network Performance Management, Network Observability and related technologies will evolve and impact business in 2025 ...

Urgency Grows for Observability and Security Convergence

Organizations find increasing difficulty in maintaining software reliability and security as the demand for continuous release cycles and the rising complexity of cloud-native environments create more risk for undetected defects and vulnerabilities to escape into production, according to the 2023 Global CIO Report, Observability and Security Convergence: Enabling Faster, More Secure Innovation in the Cloud, from Dynatrace.

CIOs and senior DevOps managers are looking to DevSecOps processes, the convergence of observability and security, and the increased use of AI and automation to balance accelerated innovation with reliability and security.

The research reveals the following:

■ 90% of organizations say digital transformation has accelerated in the past 12 months.

■ 78% of organizations deploy software updates into production every 12 hours or less, and 54% say they do so at least once every two hours.

■ DevOps teams spend nearly a third (31%) of their time on manual tasks involving detecting code quality issues and vulnerabilities, reducing the time spent on innovation.

■ 55% of organizations make tradeoffs between quality, security, and user experience to meet the need for rapid transformation.

■ 88% of CIOs say the convergence of observability and security practices will be critical to building a DevSecOps culture, and 90% say increasing the use of AIOps will be key to scaling up these practices.

"It's difficult for teams to accelerate the pace of innovation while also maintaining the highest quality and security standards," said Bernd Greifeneder, Founder and CTO at Dynatrace. "More frequent software deployments, combined with complex cloud-native architectures, make it easier for errors and vulnerabilities to escape into production where they impact customer experience and create risk. There simply aren't enough hours in the day for teams to test code as thoroughly as when they had only a single monthly deployment, but there's no margin for error in today's ultra-competitive, always-on economy. Something has to change."

Image removed.

Additional findings from the survey include:

■ Organizations plan to increase their spending on automation across development, security, and operations by 35% by 2024, as they invest more in continuously testing software quality (54%) and security (49%) in production, automatic vulnerability detection and blocking (41%), and automating release validation (35%).

■ 70% of CIOs say they need to improve their trust in the accuracy of AI's decisions before they can automate more of the CI/CD pipeline.

■ 94% of CIOs say extending a DevSecOps culture to more teams is key to accelerating digital transformation and driving faster, more secure software releases.

"Organizations know that manual approaches aren't scalable," continued Greifeneder. "Teams can't afford to waste time and effort chasing false positives, searching for vulnerabilities whenever a new threat alert appears, or conducting forensics to understand whether data has been compromised. They need to work together to drive faster, more secure innovation. Automation and modern delivery practices such as DevSecOps are key to this, but teams need to trust that their AI is reaching the right conclusions about the impact of a particular vulnerability. To accomplish this, organizations require a unified platform that can converge observability and security data to eliminate the silos between teams. By bringing their data together and retaining its context, DevOps and security teams can unlock the insights they need through causal AI. This enables them to harness intelligent automation to rapidly deliver high-performing and secure applications that delight their users."

Methdology: The report is based on a global survey of 1,300 CIOs and senior IT practitioners involved in DevOps management in large organizations with more than 1,000 employees, conducted by Coleman Parkes and commissioned by Dynatrace. The sample included 200 respondents in the US, 100 in Latin America, 600 in Europe, 150 in the Middle East, and 250 in Asia Pacific.

The Latest

Gartner highlighted the six trends that will have a significant impact on infrastructure and operations (I&O) for 2025 ...

Since IT costs can consume a significant share of revenue ... enterprises should (but often don't) pay close attention to the efficiency of IT operations at scale. Improving operational cost structures even fractionally can yield major savings for larger organizations, often in the tens of millions of dollars ...

Being able to access the full potential of artificial intelligence (AI) and advanced analytics has become a critical differentiator for businesses. These technologies allow for more informed decision-making, boost operational efficiency, enhance security, and reveal valuable insights hidden within massive data sets. Yet, for organizations to truly harness AI's capabilities, they must first tap into an often-overlooked asset: their mainframe data ...

The global IT skills shortage will persist, and perhaps worsen, over the next few years, carrying a collective price tag of more than $5 trillion. Organizations must search for ways to streamline their IT service management (ITSM) workflows in addition to, or even apart from, hiring more staff. Those who don't find alternative methods of ITSM efficiency will be left behind by their competitors ...

Embedding greater levels of deep learning into enterprise systems demands these deep-learning solutions to be "explainable," conveying to business users why it predicted what it predicted. This "explainability" needs to be communicated in an easy-to-understand and transparent manner to gain the comfort and confidence of users, building trust in the teams using these solutions and driving the adoption of a more responsible approach to development ...

Modern people can't spend a day without smartphones, and businesses have understood this very well! Mobile apps have become an effective channel for reaching customers. However, their distributed nature and delivery networks may cause performance problems ... Performance engineering can be a solution.

Image
Cigniti

Industry experts offer predictions on how Cloud, FinOps and related technologies will evolve and impact business in 2025. Part 3 covers FinOps ...

Industry experts offer predictions on how Cloud, FinOps and related technologies will evolve and impact business in 2025. Part 2 covers repatriation and more ...

Industry experts offer predictions on how Cloud, FinOps and related technologies will evolve and impact business in 2025 ...

Industry experts offer predictions on how NetOps, Network Performance Management, Network Observability and related technologies will evolve and impact business in 2025 ...