In nearly half of software-based product companies, security oversight has moved outside the CISO’s office entirely.
In nearly half of software-based product companies, security oversight has moved outside the CISO’s office entirely. — This cybersecurity statistic was published by Checkmarx in May 2025. It covers topics including Application security. The original data appears in A CISO’s Guide to Steering AppSec in the Era of DevSecOps. For the full methodology and detailed findings, refer to the original report.
Share or Copy this stat
Frequently Asked Questions
What does this statistic say?
In nearly half of software-based product companies, security oversight has moved outside the CISO’s office entirely. This data was published by Checkmarx and covers Application security.
Where does this data come from?
This statistic comes from A CISO’s Guide to Steering AppSec in the Era of DevSecOps, published by Checkmarx on May 13, 2025. You can view the original report at https://checkmarx.com/ciso-guide-to-steering-appsec-in-the-era-of-devsecops/.
What cybersecurity topics does this cover?
This statistic relates to Application security. Browse more statistics on Application security or from Checkmarx.