Maturity of Software Supply Chain Security Practices 2024
Assessment of performance of developers and their organisations on software supply chain security
About this Report
To understand the level of SSC security maturity within organizations, we surveyed developers working throughout the software supply chain with security questions about assurance, transparency, compliance, consistency, and resilience. We questioned developers and their organizations, and calculated a maturity score for their practices for software efficacy and integrity, software delivery performance, process automation, and remediation practices. These were then consolidated into a single score indicating their overall SSC security maturity in standing with the market.
Key Questions Answered
What is software supply chain security?
How mature are organisational and developer practices for ensuring secure software supply chains?
How many vulnerabilities do developers fix in their supply chain?
How long does it take developers to address vulnerabilities in their supply chain?
How does software supply chain maturity impact the number and time of vulnerabilities to address?
How well can developers assess their own maturity?
Click to expand
Methodology
In Q3 2023, SlashData designed and ran an online survey in conjunction with Red Hat to measure the state of software supply chain security in the technology sector. We conducted the analysis presented in this report based on the 831 respondents who replied to this custom survey.
