Главная
Study mode:
on
1
Intro
2
Overview
3
Applications
4
Security Champions
5
AppSect Leaders
6
Red Team
7
Agile Process
8
Testing
9
The Problem
10
Lack of Knowledge
11
Lack of Accountability
12
Job Description
13
Recruiting Your Team
14
Dont Overload Current Jobs
15
Training
16
Grooming Guidelines
17
Code Reviewing
18
Limits
19
Defensive Rewards
20
Understanding the Process
21
Conclusion
22
High employee turnover
23
Start up limited resource environment
24
Security grooming
25
Who should be a Security Champion
26
Who should be accountable
Description:
Discover how to transform developers into security champions in this 44-minute conference talk from OWASP AppSec EU 2018. Learn strategies for building a scalable security program with limited resources, including how to identify and recruit potential champions, provide effective training, and measure success. Explore techniques for integrating security into Agile and DevOps processes, addressing challenges such as lack of knowledge and accountability. Gain insights on creating job descriptions, establishing code review practices, and implementing defensive rewards. Understand the importance of security grooming and how to navigate high employee turnover in startup environments. Equip yourself with practical tools to build a robust security team from within your development ranks and effectively combat cybercrime.

From Rogue One to Rebel Alliance - Building Developers into Security Champions

OWASP Foundation
Add to list