Gartner Research Reprints

Hype Cycle for Application Security, 2021

Security and risk management leaders need to adopt a system view of application security. They should focus on orchestrating multiple application security innovations to serve as a coherent defense, rather than relying on a set of stand-alone products.

  • The continued adoption of cloud-native design patterns and the mainstreaming of microservices architectures, containers and functions have accelerated the adoption of application security controls.

  • Gartner’s Enabling Cloud-Native DevSecOps Survey for 2021 showed that more than two-thirds of the participating organizations are using static application security testing (SAST) in development to secure cloud-native applications.

 

Figure_1_Hype_Cycle_for_Application_Security_2021

***Gartner, Hype Cycle for Application Security, 2021, by Joerg Fritsch, 12 July 2021

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. 

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and is used herein with permission. This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request. All rights reserved.

Now Integrate Security into Your DevOps Toolchain

This complimentary Gartner report is brought to you by NeuVector, the leader in Full-Lifecycle Container Security

  • Protect containers from DevOps to Run-Time
  • Full lifecycle vulnerability management and compliance checks
  • Implement 'security policy as code' to quickly deploy secure applications
  • Protect east-west container traffic with the only cloud-native container firewall with Layer 7 deep packet inspection, DLP, and built-in threat detection
  • Monitor running containers & hosts for violations, threats, break outs, and vulnerabilities
  • Audit security settings of hosts, Docker daemon, and containers for internal and external compliance
TESTIMONIALS

What our customers say

“NeuVector provides the network inspection, visualization, and security needed for dynamic container environments. The solution integrates easily into our automated workflow and the built-in intelligence let’s us scale quickly. It even helped us debug network connections from mis-configured application updates.”

“If someone does compromise a pod, and performs a zero-day exploit, there’s nothing at that point to prevent someone from moving from a front-end pod to the database pod. With NeuVector we can now look at traffic flows and create more granular enforcement for pod to pod traffic. I recommend that you take a serious look at what’s running inside your network.”

chime-logo-transparent-green
arvato-logo-black
1200px-Experian_logo
ClearReview

Kubernetes-native Security at DevOps Velocity.

Visibility. Automation. Compliance.

From Pipeline to Production.