A global survey of 1,300 CIOs and DevOps managers working for organizations with more than 1,000 employees released today finds that more than three-quarters of respondents work for organizations (78%) that deploy software updates in production every 12 hours or less, with more than half (54%) saying they do so at least once every two hours. A total of 20% say they deploy updates every minute or less.
Conducted by market research firm Coleman Parkes on behalf of Dynatrace, the survey also reveals that 90% of respondents say the pace of digital transformation within their organization has accelerated over the past 12 months. . More than a quarter (26%) expect the pace of digital transformation to continue to accelerate, according to the survey.
However, 55% of respondents work for organizations that make tradeoffs between quality, security, and user experience to meet the need for rapid transformation. A total of 41% of respondents said they had to sacrifice code quality and user experience to meet faster innovation demands, while more than a third (34%) also had to sacrifice security. code.
Overall, DevOps teams spend an average of nearly a third (31%) of their time on manual tasks involving finding code quality issues and vulnerabilities that contribute to slowing the pace of innovation. according to the survey.
To address these issues, organizations plan to increase their automation spending in development, security, and operations by 35% by 2024 as they invest more in continuous software quality testing ( 54%) and securing production environments (49%), automatic detection of vulnerabilities. and blocking (41%) and automating version commit (35%). The average budget allocated to these activities in these large organizations is $9.1 million, the survey reveals.
88% of CIOs said converging observability and security practices will be key to creating a DevSecOps culture, with 94% noting that extending a DevSecOps culture to more teams is key to accelerating digital transformation. Only 27% of respondents said they fully embrace a DevSecOps culture today. The main obstacles to achieving this goal are that security teams do not trust developers (55%), developers perceive security teams as barriers to innovation (49%), and the silos that exist between teams (36%).
Organizations plan to increase their annual investment in DevSecOps automation by 2024 by an average of 35%, but only a quarter (25%) said applying artificial intelligence to security is a priority. Meanwhile, only 28% of respondents said they were completely confident that apps are fully tested for vulnerabilities before being deployed.
A total of 90% said increasing the use of AI for IT operations (AIOps) will be key to growing these practices. However, 70% of respondents said they needed to improve their confidence in the accuracy of AI decisions before they could further automate their continuous integration/continuous delivery (CI/CD) pipeline.
Bob Wambach, vice president of product marketing for Dynatrace, said there is a clear correlation between this accelerating pace of digital transformation and the need to deliver more frequent software updates that is driving these investments. However, most organizations will struggle to achieve all of their goals unless they break down the silos that prevent them from automating and observing modern DevSevOps workflows, he added. To achieve this goal, DevOps teams will also need to re-evaluate the platforms they use as they move to reduce the current level of friction encountered when building and deploying applications, it said. -he adds.
It’s too early to tell when DevSevOps workflows will define the next era of software development. One way or another, it is certain that every organization that adopts DevOps will have to address persistent application security issues.