Respondents said their three largest areas for control improvements were:
Improving security and compliance to meet regulatory expectations
Managing the organization’s architecture, (including maintaining legacy systems)
Balancing security, compliance and technology developments
Design and oversight
Effectiveness of technologies and tools
Adoption of secure development processes
