Explore a comprehensive conference talk from DefCamp 2018 on building application security with limited resources. Learn about the challenges of implementing security measures, understand the stages of application security maturity, and discover practical strategies for threat modeling and inception checklists. Gain insights into attainable goals, funding requests, and the use of commercial tools. Dive into the requirements phase, training considerations, and essential checklists. Conclude with a demonstration of SonarQube and engage in a Q&A session to deepen your understanding of cost-effective application security practices.