AI Security Gap: Why Governance and Developer Support Must Catch Up
PITTSBURGH, Pa., July 16, 2025 /PRNewswire/ -- Security Journey, a leading provider of application security education, has released a new report outlining the security challenges posed by AI adoption in software development, and the steps organizations must take to close the growing gap between how software is built and how it is secured.
The report, Closing the Security Gap in AI, captures insights from a roundtable held in June 2025, featuring leading voices in application security, development, and AI. The panel explored how AI tools, particularly large language models and code generation assistants, are transforming software workflows, often at the expense of security. Developers are releasing code faster, but often without fully understanding the implications of using AI in the development lifecycle.
Security Journey's roundtable participants - including security leaders, engineers, and educators from across the industry - discussed the real-world consequences of AI-generated vulnerabilities, the risks of over-relying on automation, and the cultural and structural changes required to support secure AI adoption.
The report pinpoints where organizations must adapt to secure their use of AI, including:
Governance must reflect reality: AI policies are often developed without a clear understanding of how teams truly engage with the technology. When governance is overly rigid or reactive, it drives employees toward shadow AI - exacerbating risk rather than mitigating it.
Developers need greater support and accountability: AI is shifting more decision-making onto developers, many of whom lack the security knowledge to assess risks. Organizations must provide proactive education and just-in-time support.
Security culture needs to evolve with the tech: Teams will only prioritize security if it is integrated into their daily routines and reinforced by peers. Positive reinforcement, clear defaults, and internal champions can help normalize secure behavior.
AI is accelerating talent gaps: Overreliance on AI tools is preventing junior developers from building foundational experience. Organizations risk losing long-term expertise unless they invest in both human and technical development.
Security May Get Worse Before It Gets Better: Threat actors are already taking advantage of vulnerabilities in AI-generated code. As organizations struggle to keep pace, the frequency of incidents may continue to rise. The path forward demands education, rigorous testing, and a shift in security culture
"This isn't a tooling problem - it's a people problem," said Dustin Lehr, AppSec Advocate at Security Journey. "From boardrooms to codebases, the pressure to adopt AI is accelerating. It's transforming how software is created, but developers remain accountable for securing it. If we don't match the speed of AI adoption with equally aggressive education and governance, we risk exposing organizations to systemic vulnerabilities. Developers need more than policies - they need training, support, and a culture that empowers secure choices. This report doesn't just highlight the challenges - it offers a roadmap to close the gap."
To read the full insights and recommendations, download the complete report: Closing the Security Gap in AI.
About Security Journey
Security Journey empowers organizations to reduce vulnerabilities by teaching developers and everyone in the software development lifecycle (SDLC) how to build secure applications. With a programmatic approach to secure coding education, Security Journey offers an extensive library of video-based lessons, and hands-on coding exercises in sandbox environments. By strengthening foundational knowledge and fostering a security-first mindset, Security Journey helps teams address vulnerabilities at the source, bridging the gap between security and development to create a culture of secure software development. Learn more and start building security into your code at www.securityjourney.com.
View original content:https://www.prnewswire.com/news-releases/ai-security-gap-why-governance-and-developer-support-must-catch-up-302506745.html
SOURCE Security Journey
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
New York Post
29 minutes ago
- New York Post
China's rare earth magnet exports to US surge 660% after breakthrough trade deal
China's exports of rare earth magnets to the United States in June soared to more than seven times their May level, marking a sharp recovery in the flow of critical minerals used in electric vehicles and wind turbines after a Sino-U.S. trade deal. Outbound shipments to the United States from the world's largest producer of rare earth magnets surged to 353 metric tons in June, up 660% from May, data from the General Administration of Customs showed on Sunday. That came after pacts reached in June to resolve issues around shipments of rare earth minerals and magnets to the United States. Chipmaker Nvidia (NVDA.O), plans to resume sales of its H20 AI chips to China as part of the agreement. Advertisement 3 China's exports of rare earth magnets to the United States in June soared to more than seven times their May level. AFP via Getty Images 3 China, which provides more than 90% of the global supply of rare earth magnets, decided to add rare earth items to its export restriction list in retaliation for tariffs. REUTERS China, which provides more than 90% of the global supply of rare earth magnets, decided in early April to add several rare earth items to its export restriction list in retaliation for U.S. tariffs. Advertisement The subsequent sharp fall in shipments in April and May, due to the lengthy time required to secure export licenses, had upset the global supply chain, forcing some automakers outside China to halt partial production due to a rare earths shortage. In total, China exported 3,188 tons of rare earth permanent magnets globally last month, up 157.5% from 1,238 tons in May, although the June volume was still 38.1% lower than the corresponding month in 2024. 3 The restrictions forced some automakers outside China to halt partial production due to a shortage. AP Shipments of magnets are likely to recover further in July as more exporters obtained licenses in June, analysts said. Advertisement During the first half of 2025, exports of rare earth magnets fell 18.9% on the year to 22,319 tons.
Yahoo
an hour ago
- Yahoo
Are We in a Quantum Computing Bubble?
Key Points Quantum computing stocks have been on a tear this year, despite the technology's nascent scale and still speculative nature. Unlike the broader artificial intelligence (AI) theme, many popular quantum computing stocks are small companies with limited traction. While it can be tempting to follow the momentum, several quantum computing stocks boast valuation multiples that echo those seen during prior stock market bubbles. 10 stocks we like better than IonQ › This year has been tough for investors, particularly those who flock toward growth stocks. Just about every major industry has been impacted in some form or fashion by President Donald Trump's new tariff policies. While the broader implications of these import taxes are still unfolding, one sector that has faced abnormally large headwinds is technology. For the first time in nearly three years, investing in the artificial intelligence (AI) market hasn't necessarily resulted in outsized gains. Nevertheless, one pocket of the AI realm that has managed to circumvent the panic-selling this year is quantum computing. As of this writing (July 17), the Defiance Quantum ETF has gained 17% so far this year -- roughly double the returns seen in the S&P 500 and Nasdaq Composite. With quantum computing stocks trouncing the broader market, now may be an appropriate time to assess valuations in the sector and compare them to prior periods of heightened enthusiasm. What is a stock market bubble, and what are some examples? One of the most basic mistakes investors make is assessing a company's valuation based on its stock price. In other words, if the stock price is low, an investor might mistakenly view the company as "cheap" (and vice versa). Smart investors understand that there are far more parameters than the share price that help determine a company's valuation. Underlying financial metrics, such as revenue, gross margins, profitability, free cash flow, cash, and debt, should all play a factor in assessing the health of a business. From there, more sophisticated analysis requires investors to benchmark these figures and their growth rates against a set of peers to get a better sense of how the business in question compares to the broader competitive landscape. Many investors do not take the time to perform the due diligence exercise above and instead choose to follow broader momentum. Unfortunately, this can lead to abnormally inflated stock prices -- those that are incongruent with the underlying fundamentals of the business. Generally speaking, reality begins to set in and these companies are unable to sustain their overstretched valuations, eventually leading to harsh, dramatic sell-offs. This phenomenon is known as a stock market bubble. In the charts below, I've illustrated some valuation trends across two notable stock market bubbles. The chart above illustrates the price-to-sales (P/S) ratios for a number of high-flying internet stocks during the dot-com bubble of the late 1990s. As the trends above make clear, each of the companies in the peer set above trades at much more normalized valuation multiples today when compared to their peaks during the internet boom. Investors witnessed a similar theme in overstretched valuations during the peak days of the COVID-19 pandemic. Companies such as Zoom Communications, Wayfair, and Peloton witnessed abnormal demand for their respective product offerings as remote work became the norm. As the trends seen above demonstrate, however, these growth tailwinds were not permanent. Today, none of these COVID stocks are seen as compelling growth opportunities, and their cratering valuations are a sobering reminder of the aftermath of bubbles bursting. How do quantum computing stocks compare to the valuations above? Over the last year, IonQ (NYSE: IONQ), Rigetti Computing (NASDAQ: RGTI), D-Wave Quantum (NYSE: QBTS), and Quantum Computing (NASDAQ: QUBT) have emerged as popular names fueling the quantum computing movement. With a P/S multiple of over 5,700, the tiny Quantum Computing business is the clear outlier in the quantum computing cohort illustrated above. Even so, Rigetti, IonQ, and D-Wave each boast P/S ratios that are either considerably higher or in line with the darlings of the dot-com and COVID bubbles. Are we in a quantum computing stock bubble? The quantum computing stocks referenced above are highly speculative -- arguably even more so than the highfliers during the internet era. Unlike then, today's technology behemoths, such as Amazon, Microsoft, eBay, and Cisco, have evolved into sophisticated platform businesses with diversified ecosystems. This provides them with the scale and financial flexibility to explore emerging fields such as quantum computing. Smaller players, such as IonQ, Rigetti, D-Wave, and Quantum Computing, currently face intense competition from big tech -- something the dot-com businesses did not. Given the valuation analyses explored above, many popular quantum computing stocks are clearly trading at abnormally high and historically unsustainable valuation levels. For these reasons, I think companies such as IonQ, Rigetti, D-Wave, and Quantum Computing have entered bubble territory. With that said, many big tech companies in the "Magnificent Seven" are exploring quantum applications as well. Many of these companies trade for much more reasonable valuations. While I am not convinced the broader quantum computing opportunity is necessarily in a bubble, I believe investors need to be cautious and thoughtful when selecting which quantum computing stocks to invest in. And the best choices will rarely be high-flying specialists with big dreams and small revenue streams. Should you invest $1,000 in IonQ right now? Before you buy stock in IonQ, consider this: The Motley Fool Stock Advisor analyst team just identified what they believe are the for investors to buy now… and IonQ wasn't one of them. The 10 stocks that made the cut could produce monster returns in the coming years. Consider when Netflix made this list on December 17, 2004... if you invested $1,000 at the time of our recommendation, you'd have $652,133!* Or when Nvidia made this list on April 15, 2005... if you invested $1,000 at the time of our recommendation, you'd have $1,056,790!* Now, it's worth noting Stock Advisor's total average return is 1,048% — a market-crushing outperformance compared to 180% for the S&P 500. Don't miss out on the latest top 10 list, available when you join Stock Advisor. See the 10 stocks » *Stock Advisor returns as of July 15, 2025 John Mackey, former CEO of Whole Foods Market, an Amazon subsidiary, is a member of The Motley Fool's board of directors. Adam Spatacco has positions in Amazon and Microsoft. The Motley Fool has positions in and recommends Amazon, Cisco Systems, Microsoft, Peloton Interactive, VeriSign, Zoom Communications, and eBay. The Motley Fool recommends Wayfair and recommends the following options: long January 2026 $395 calls on Microsoft and short January 2026 $405 calls on Microsoft. The Motley Fool has a disclosure policy. Are We in a Quantum Computing Bubble? was originally published by The Motley Fool Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Entrepreneur
an hour ago
- Entrepreneur
AI-Powered Everything for Your Business—Just $80 for Lifetime Access
Disclosure: Our goal is to feature products and services that we think you'll find interesting and useful. If you purchase them, Entrepreneur may get a small share of the revenue from the sale from our commerce partners. Running a business today means juggling countless different roles, and none of them take time off. Whether you're a solopreneur, startup founder, or the marketing director at a small company, is about to make your day significantly easier. For a one-time fee of just $79.97 (normally $540), you'll get lifetime access to Advanced Business Plan. This is a powerhouse platform that gives you pro-level tools across every part of your workflow, including text, chats, images, and more. Need to write a blog post? Done. Generate product images? Easy. Summarize a PDF contract, subtitle a video, translate audio, or come up with a brand voice for your new side hustle? All in here. Unlike those "one-feature-wonder" tools, combines all your favorite AI models into one hub—GPT-4o, Claude 3, Gemini, LLaMA, and more—and gives you a unified workspace to chat, create, rewrite, summarize, design, and edit across text, audio, image, video, and even PDFs. And here's the biggest feature of all: you pay once, and never again. No recurring charges. No tiered subscriptions. Just the freedom to scale your business or side hustle without scaling your software budget. If you've been duct-taping your workflow with half a dozen tools and browser tabs, it's time to simplify and save. This deal disappears after August 3, so if you're the type who likes getting lifetime value for less than the cost of a single freelance project, you know what to do. Grab lifetime access to the Advanced Business Plan while it's just $79.97 (normally $540) through August 3 at 11:59 p.m. PT. Advanced Business Plan Lifetime Subscription See Deal StackSocial prices subject to change.
