Published: 01 August 2024
Summary
The rapid growth of digital services and the pace of innovation enabled by the cloud complicates the securing of applications. I&O leaders can use this research to integrate application security capabilities with observability tools, avoid unnecessary risks and mitigate the impact of successful attacks.
Included in Full Research
Overview
Key Findings
Highly visible vulnerability exploitation of applications and their components (e.g., Log4j, MOVEit) have exposed the security risks organizations are faced with across their entire application portfolios.
While there are open, freely available impact scoring standards like common vulnerability scoring system (CVSS) and databases like common vulnerability and exposure (CVE) that provide a list of known vulnerabilities, their information must still be contextualized for each organization to provide useful insight. Increasingly, this functionality is being offered by observability vendors, but uptake and awareness of this remains low.
Enterprises already spend heavily on observability tools, but there is a significantoverlap between
Clients can log in to view the entire
document.