Does your organization have an individual or group of individuals designated as “cloud security architects/engineers”? (please check one)
How often does your organization’s CISO (or other security team representative) brief business executives on the security controls, KPIs, and threat activities observed affecting your organization’s cloud-native applications? (please check one)
In which of the following stages of the software delivery lifecycle do security stakeholders and development teams actively collaborate? (please check all that apply)
To what extent does your organization use or plan to use DevSecOps approaches? (please check one)
Approximately what percent of your organization’s internally-developed cloud-native applications are secured via DevSecOps automation? (please check one)
Which of the following security practices has your organization automated via integration with development and delivery tools and processes? (please check all that apply)
Which of the following best describes the types of controls currently employed to secure your organization’s cloud-native applications? (please check one)
Which best describes your organization’s use of or interest in an integrated platform to protect cloud-native applications and infrastructure? (please check one)
Which of the following controls does your organization currently use when it comes to securing its internally developed cloud-native applications and infrastructure? (please check all that apply)