Urgency Grows for Observability and Security Convergence
February 14, 2023
Share this

Organizations find increasing difficulty in maintaining software reliability and security as the demand for continuous release cycles and the rising complexity of cloud-native environments create more risk for undetected defects and vulnerabilities to escape into production, according to the 2023 Global CIO Report, Observability and Security Convergence: Enabling Faster, More Secure Innovation in the Cloud, from Dynatrace.

CIOs and senior DevOps managers are looking to DevSecOps processes, the convergence of observability and security, and the increased use of AI and automation to balance accelerated innovation with reliability and security.

The research reveals the following:

■ 90% of organizations say digital transformation has accelerated in the past 12 months.

■ 78% of organizations deploy software updates into production every 12 hours or less, and 54% say they do so at least once every two hours.

■ DevOps teams spend nearly a third (31%) of their time on manual tasks involving detecting code quality issues and vulnerabilities, reducing the time spent on innovation.

■ 55% of organizations make tradeoffs between quality, security, and user experience to meet the need for rapid transformation.

■ 88% of CIOs say the convergence of observability and security practices will be critical to building a DevSecOps culture, and 90% say increasing the use of AIOps will be key to scaling up these practices.

"It's difficult for teams to accelerate the pace of innovation while also maintaining the highest quality and security standards," said Bernd Greifeneder, Founder and CTO at Dynatrace. "More frequent software deployments, combined with complex cloud-native architectures, make it easier for errors and vulnerabilities to escape into production where they impact customer experience and create risk. There simply aren't enough hours in the day for teams to test code as thoroughly as when they had only a single monthly deployment, but there's no margin for error in today's ultra-competitive, always-on economy. Something has to change."


Additional findings from the survey include:

■ Organizations plan to increase their spending on automation across development, security, and operations by 35% by 2024, as they invest more in continuously testing software quality (54%) and security (49%) in production, automatic vulnerability detection and blocking (41%), and automating release validation (35%).

■ 70% of CIOs say they need to improve their trust in the accuracy of AI's decisions before they can automate more of the CI/CD pipeline.

■ 94% of CIOs say extending a DevSecOps culture to more teams is key to accelerating digital transformation and driving faster, more secure software releases.

"Organizations know that manual approaches aren't scalable," continued Greifeneder. "Teams can't afford to waste time and effort chasing false positives, searching for vulnerabilities whenever a new threat alert appears, or conducting forensics to understand whether data has been compromised. They need to work together to drive faster, more secure innovation. Automation and modern delivery practices such as DevSecOps are key to this, but teams need to trust that their AI is reaching the right conclusions about the impact of a particular vulnerability. To accomplish this, organizations require a unified platform that can converge observability and security data to eliminate the silos between teams. By bringing their data together and retaining its context, DevOps and security teams can unlock the insights they need through causal AI. This enables them to harness intelligent automation to rapidly deliver high-performing and secure applications that delight their users."

Methdology: The report is based on a global survey of 1,300 CIOs and senior IT practitioners involved in DevOps management in large organizations with more than 1,000 employees, conducted by Coleman Parkes and commissioned by Dynatrace. The sample included 200 respondents in the US, 100 in Latin America, 600 in Europe, 150 in the Middle East, and 250 in Asia Pacific.

Share this

The Latest

February 27, 2024

Generative AI has recently experienced unprecedented dramatic growth, making it one of the most exciting transformations the tech industry has seen in some time. However, this growth also poses a challenge for tech leaders who will be expected to deliver on the promise of new technology. In 2024, delivering tangible outcomes that meet the potential of AI, and setting up incubator projects for the future will be key tasks ...

February 26, 2024

SAP is a tool for automating business processes. Managing SAP solutions, especially with the shift to the cloud-based S/4HANA platform, can be intricate. To explore the concerns of SAP users during operational transformations and automation, a survey was conducted in mid-2023 by Digitate and Americas' SAP Users' Group ...

February 22, 2024

Some companies are just starting to dip their toes into developing AI capabilities, while (few) others can claim they have built a truly AI-first product. Regardless of where a company is on the AI journey, leaders must understand what it means to build every aspect of their product with AI in mind ...

February 21, 2024

Generative AI will usher in advantages within various industries. However, the technology is still nascent, and according to the recent Dynatrace survey there are many challenges and risks that organizations need to overcome to use this technology effectively ...

February 20, 2024

In today's digital era, monitoring and observability are indispensable in software and application development. Their efficacy lies in empowering developers to swiftly identify and address issues, enhance performance, and deliver flawless user experiences. Achieving these objectives requires meticulous planning, strategic implementation, and consistent ongoing maintenance. In this blog, we're sharing our five best practices to fortify your approach to application performance monitoring (APM) and observability ...

February 16, 2024

In MEAN TIME TO INSIGHT Episode 3, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at Enterprise Management Associates (EMA) discusses network security with Chris Steffen, VP of Research Covering Information Security, Risk, and Compliance Management at EMA ...

February 15, 2024

In a time where we're constantly bombarded with new buzzwords and technological advancements, it can be challenging for businesses to determine what is real, what is useful, and what they truly need. Over the years, we've witnessed the rise and fall of various tech trends, such as the promises (and fears) of AI becoming sentient and replacing humans to the declaration that data is the new oil. At the end of the day, one fundamental question remains: How can companies navigate through the tech buzz and make informed decisions for their future? ...

February 14, 2024

We increasingly see companies using their observability data to support security use cases. It's not entirely surprising given the challenges that organizations have with legacy SIEMs. We wanted to dig into this evolving intersection of security and observability, so we surveyed 500 security professionals — 40% of whom were either CISOs or CSOs — for our inaugural State of Security Observability report ...

February 13, 2024

Cloud computing continues to soar, with little signs of slowing down ... But, as with any new program, companies are seeing substantial benefits in the cloud but are also navigating budgetary challenges. With an estimated 94% of companies using cloud services today, priorities for IT teams have shifted from purely adoption-based to deploying new strategies. As they explore new territories, it can be a struggle to exploit the full value of their spend and the cloud's transformative capabilities ...

February 12, 2024

What will the enterprise of the future look like? If we asked this question three years ago, I doubt most of us would have pictured today as we know it: a future where generative AI has become deeply integrated into business and even our daily lives ...