Did you miss a session from MetaBeat 2022? Head over to the on-demand library for all of our featured sessions here.
Overcoming the challenges of securing devops and software supply chains from malicious, unpredictable attacks with new technologies dominates Gartner’s latest Hype Cycle for Application Security. One of the most concerning insights this year’s hype cycle shed light on is that no single application security innovation can deliver comprehensive security. In light of this, CISOs are also forcing the consolidation of their tech stacks to improve their teams’ efficiency at identifying risks while reducing costs.
Consolidating tech stacks while improving cloud security by removing risks of misconfiguration is a high priority for CISOs and is reflected throughout the hype cycle. Seventy-five percent of organizations who responded to a separate Gartner trends survey say they are actively pursuing security vendor consolidation.
It’s unsurprising to see cloud-native application protection platforms (CNAPP), and software-as-a-service (SaaS) security posture management (SSPM) included in the hype cycle for the first time, given the challenges organizations have securely integrating cloud instances. However, service mesh, dynamic data masking (DDM), and business-critical application security have all been dropped for this year’s hype cycle. Gartner explained that it dropped service mesh because it is generally challenging to use and delivers limited results.
Consolidation drives app security growth
Gartner’s latest forecast projects end-user spending for the information security and risk management market to reach $169.2 billion this year. The research giant predicts that will increase to $261.9 billion in 2026 — attaining a constant currency compound annual growth rate (CAGR) of 11.1% from 2021 to 2026. On top of that, Gartner also predicts that spending on application security will more than double in the upcoming years and grow from $6 billion this year to $13.7 billion by 2026. Spending in this …