Stefania Chaplin

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together

What if you could solve your biggest security challenges by making every developer just one percent better? Learn how to do it without causing developer burnout.

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together
#1about 3 minutes

Understanding the recurring bug cycle and its impact

Recurring vulnerabilities like SQL injection create a cycle of context switching and developer burnout that goes beyond the OWASP Top 10.

#2about 3 minutes

Breaking down silos between developers, security, and operations

Misaligned KPIs and communication gaps between developers, security, and operations teams can be bridged by creating a culture of security champions.

#3about 6 minutes

Integrating security tools into the developer workflow

Empower developers with free OWASP tools like Zap and dependency checkers, and integrate automated scanning and just-in-time training directly into the CI/CD pipeline.

#4about 2 minutes

Sharpening the saw with personal well-being and learning

Applying the "sharpen the saw" principle through continuous learning and maintaining personal balance helps prevent burnout and improves developer flow.

#5about 2 minutes

Key strategies for building a secure code culture

Build a stronger security posture by prioritizing time to learn, addressing technical debt, adopting an empathetic approach, and using OWASP resources.

#6about 1 minute

Transitioning from a developer to a security role

To move from development to security, start internal conversations, join a security champion program, and explore your company's specific security priorities.

#7about 1 minute

Finding resources for continuous security learning

Beyond the OWASP Top 10, developers can learn security through internal hackathons, online platforms, community meetups, and exploring red team versus blue team concepts.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Fostering a developer-first security culture
01:17 MIN

Fostering a developer-first security culture

Walking into the era of Supply Chain Risks

Scaling AppSec teams by empowering developers
03:15 MIN

Scaling AppSec teams by empowering developers

Why Security-First Development Helps You Ship Better Software Faster

Bridging the communication gap between developers and security
01:58 MIN

Bridging the communication gap between developers and security

How to Defend Against Data Manipulation Attacks - Bozidar Spirovski & Wekoslav Stefanovski

Why security teams must scale through developer collaboration
02:54 MIN

Why security teams must scale through developer collaboration

Building Security Champions

Addressing the security education gap for developers
03:34 MIN

Addressing the security education gap for developers

Climate vs. Weather: How Do We Sustainably Make Software More Secure?

Balancing developer and stakeholder security priorities
04:25 MIN

Balancing developer and stakeholder security priorities

What The Hack is Web App Sec?

From vulnerability researcher to automated security founder
05:31 MIN

From vulnerability researcher to automated security founder

The transformative impact of GenAI for software development and its implications for cybersecurity

Making web application security accessible to developers
01:24 MIN

Making web application security accessible to developers

What The Hack is Web App Sec?

Featured Partners

Related Videos

See all videos
Building Security Champions
48:02

Building Security Champions

Tanya Janca

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes
28:01

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes

Tino Sokic

Simple Steps to Kill DevSec without Giving Up on Security
21:53

Simple Steps to Kill DevSec without Giving Up on Security

Isaac Evans

Real-World Security for Busy Developers
29:50

Real-World Security for Busy Developers

Kevin Lewis

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?
27:36

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Tino Sokic

Security Pitfalls for Software Engineers
27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

Why Security-First Development Helps You Ship Better Software Faster
22:18

Why Security-First Development Helps You Ship Better Software Faster

Michael Wildpaner

What The Hack is Web App Sec?
24:01

What The Hack is Web App Sec?

Jackie

Related Articles

View all articles
Christina Schaireiter
Why Attend a Developer Event?
Modern software engineering moves too fast for documentation alone. Attending a world-class event is about shifting from tactical execution to strategic leadership. Skill Diversification: Break out of your specific tech stack to see how the industry...
Why Attend a Developer Event?
Daniel Cranney
The Overflow: 5 Security and Privacy Tools for Developers
We’re back again with another edition of the Overflow, where we share some of the best tools we’ve found from around the web that we just couldn’t cram into the already jam-packed editions of the Dev Digest. So let’s take a look at five security and ...
The Overflow: 5 Security and Privacy Tools for Developers

From learning to earning

Jobs that call for the skills explored in this talk.