#United States #Burlington #Application Security #Black Duck Software #Development Productivity

Enhancing Development and Security with Black Duck's Solutions

In today’s rapidly evolving software landscape, the importance of secure and efficient development practices cannot be overstated. A recent customer value study by Black Duck® Software, a prominent player in application security solutions, underscores this point, showcasing substantial advantages for development teams utilizing its offerings.

Overview of the Study

Conducted by an independent research firm, the study surveyed over 100 customers across various industries and regions. These respondents leverage Black Duck’s diverse suite of solutions designed to secure applications and mitigate software supply chain risks. The solutions included Static Application Security Testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), and Application Security Posture Management (ASPM).

Key Findings

The study found that incorporating Black Duck's automated tools into development workflows leads to remarkable improvements in efficiency and security posture:

• - 42% reduction in manual code reviews: By automating routine checks, development teams could focus on more critical tasks, allowing them to deliver projects faster.
• - 66% decrease in remediation time: Issues identified in the development phase could be addressed more swiftly, significantly accelerating the overall workflow.
• - Additional 4.23 hours weekly for developers: With less time spent on security reviews, developers had more bandwidth to innovate and produce new code.
• - 40% increase in security coverage: The tools enhanced overall security measures, ensuring better protection against vulnerabilities.
• - 24% drop in security defects: The proactive measures led to fewer issues arising post-deployment.
• - 75% decrease in preparation time for audits: As risks were managed effectively, generating reports for audits became less time-consuming.
• - 55% reduction in delayed releases: Addressing security issues promptly minimized the frequency of project delays, fostering a more continuous integration cycle.

Real-World Impacts

Michael Knight, VP of Technology at DataScan, a satisfied user of Black Duck solutions, remarked, "Our team saw a clear improvement in code quality with Black Duck. It identified critical and high-severity issues that our previous scanning tools overlooked, positioning us much better in terms of security."

The findings reflect Black Duck's commitment to enhancing software development processes and the importance of embedding security into the development cycle from the start. Jason Schmitt, CEO of Black Duck, emphasized, "This study quantifies for our customers the clear advantages of proactively addressing security and quality issues. By integrating Black Duck into their development routines, they see quicker remediation cycles and fewer security delays, allowing them to focus on delivering valuable features to their users."

Conclusion

As businesses strive for innovations while ensuring security, the data from Black Duck's study provides a compelling case for adopting robust application security measures. With a proven track record of enhancing development productivity and managing risks effectively, Black Duck continues to redefine security standards in software development.

For more information, those interested can download the full customer value report titled "How Black Duck Drives Development Productivity, Lowers Risk, and Decreases Cost for Customers" and explore additional insights offered on Black Duck's official blog.