Explore application security through gamification and Capture The Flag (CTF) challenges in this 25-minute DevSecCon conference talk. Discover how modern cloud-native technologies, while enabling rapid building, deployment, and scaling, also introduce new risks and vulnerabilities. Learn about the security concerns that arise in each layer of cloud-native applications, including code, third-party dependencies, containers, and clusters. Gain insights into making application security more tangible and engaging for developers through interactive approaches, helping teams better understand and address potential vulnerabilities in complex cloud environments.