Application security is changing in dramatic ways. Change is accelerating so quickly that the current state is almost unrecognizable to someone who started developing software just a decade ago.
Rapid change can be a tough pill to swallow for developers. Anyone who writes code continuously faces change on multiple fronts: new technologies and frameworks, programming languages, tools, processes, and more. It's hard to keep up with core software development topics, let alone (arguably) adjacent topics like application security.
When looking at major trends in application security, one thing is clear to me: there is a lot more good news than bad news. That's not to understate the bad news — there is a lot of it. You know that. But there's another side to the story.
Challenges create opportunities. That's exactly what is happening in application security if we zoom out and look big picture. Strategy-minded software developers are exceptional at solving problems and taking advantage of opportunities. We're going to discuss a bunch of them today.