Stefania Chaplin

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together

What if you could solve your biggest security challenges by making every developer just one percent better? Learn how to do it without causing developer burnout.

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together
#1about 3 minutes

Understanding the recurring bug cycle and its impact

Recurring vulnerabilities like SQL injection create a cycle of context switching and developer burnout that goes beyond the OWASP Top 10.

#2about 3 minutes

Breaking down silos between developers, security, and operations

Misaligned KPIs and communication gaps between developers, security, and operations teams can be bridged by creating a culture of security champions.

#3about 6 minutes

Integrating security tools into the developer workflow

Empower developers with free OWASP tools like Zap and dependency checkers, and integrate automated scanning and just-in-time training directly into the CI/CD pipeline.

#4about 2 minutes

Sharpening the saw with personal well-being and learning

Applying the "sharpen the saw" principle through continuous learning and maintaining personal balance helps prevent burnout and improves developer flow.

#5about 2 minutes

Key strategies for building a secure code culture

Build a stronger security posture by prioritizing time to learn, addressing technical debt, adopting an empathetic approach, and using OWASP resources.

#6about 1 minute

Transitioning from a developer to a security role

To move from development to security, start internal conversations, join a security champion program, and explore your company's specific security priorities.

#7about 1 minute

Finding resources for continuous security learning

Beyond the OWASP Top 10, developers can learn security through internal hackathons, online platforms, community meetups, and exploring red team versus blue team concepts.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Using AI to overcome challenges in systems programming
02:49 MIN

Using AI to overcome challenges in systems programming

AI in the Open and in Browsers - Tarek Ziadé

The security risks of AI-generated code and slopsquatting
05:55 MIN

The security risks of AI-generated code and slopsquatting

Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2

The security challenges of building AI browser agents
06:33 MIN

The security challenges of building AI browser agents

AI in the Open and in Browsers - Tarek Ziadé

Organizing a developer conference for 15,000 attendees
01:32 MIN

Organizing a developer conference for 15,000 attendees

Cat Herding with Lions and Tigers - Christian Heilmann

Prompt injection as an unsolved AI security problem
07:39 MIN

Prompt injection as an unsolved AI security problem

AI in the Open and in Browsers - Tarek Ziadé

Preventing exposed API keys in AI-assisted development
03:45 MIN

Preventing exposed API keys in AI-assisted development

Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2

The industry's focus on frameworks over web fundamentals
11:32 MIN

The industry's focus on frameworks over web fundamentals

WeAreDevelopers LIVE – Frontend Inspirations, Web Standards and more

Building trust through honest developer advocacy
02:48 MIN

Building trust through honest developer advocacy

Devs vs. Marketers, COBOL and Copilot, Make Live Coding Easy and more - The Best of LIVE 2025 - Part 3

Featured Partners

Related Videos

See all videos
Simple Steps to Kill DevSec without Giving Up on Security21:53

Simple Steps to Kill DevSec without Giving Up on Security

Isaac Evans

Building Security Champions48:02

Building Security Champions

Tanya Janca

Real-World Security for Busy Developers29:50

Real-World Security for Busy Developers

Kevin Lewis

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?27:36

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Tino Sokic

What The Hack is Web App Sec?24:01

What The Hack is Web App Sec?

Jackie

Why Security-First Development Helps You Ship Better Software Faster22:18

Why Security-First Development Helps You Ship Better Software Faster

Michael Wildpaner

Security Pitfalls for Software Engineers27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

Building Security Champions42:40

Building Security Champions

Tanya Janca

Related Articles

View all articles
DC
Daniel Cranney
Top Must-Visit Developer Conferences in the US in 2026
For US software developers, 2026 is shaping up to be one of the strongest years yet for in-person learning, networking, and career growth. As AI moves into production, cloud architectures mature, and engineering teams face increasing complexity, deve...
Top Must-Visit Developer Conferences in the US in 2026

From learning to earning

Jobs that call for the skills explored in this talk.