In October and November 2010, Creative Intellect Consulting UK undertook a survey to understand the impact of security on the software development and delivery processes. This report, carried out after an in- depth survey with members of information security professional body (ISC)2; the International Association of Software Architects (IASA); software development, IT and information security professionals; and software architects around the world, represents current practices firmly in the dock. It throws up in black and white just how serious the issue is.