Stefania Chaplin

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together

What if you could solve your biggest security challenges by making every developer just one percent better? Learn how to do it without causing developer burnout.

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together
#1about 3 minutes

Understanding the recurring bug cycle and its impact

Recurring vulnerabilities like SQL injection create a cycle of context switching and developer burnout that goes beyond the OWASP Top 10.

#2about 3 minutes

Breaking down silos between developers, security, and operations

Misaligned KPIs and communication gaps between developers, security, and operations teams can be bridged by creating a culture of security champions.

#3about 6 minutes

Integrating security tools into the developer workflow

Empower developers with free OWASP tools like Zap and dependency checkers, and integrate automated scanning and just-in-time training directly into the CI/CD pipeline.

#4about 2 minutes

Sharpening the saw with personal well-being and learning

Applying the "sharpen the saw" principle through continuous learning and maintaining personal balance helps prevent burnout and improves developer flow.

#5about 2 minutes

Key strategies for building a secure code culture

Build a stronger security posture by prioritizing time to learn, addressing technical debt, adopting an empathetic approach, and using OWASP resources.

#6about 1 minute

Transitioning from a developer to a security role

To move from development to security, start internal conversations, join a security champion program, and explore your company's specific security priorities.

#7about 1 minute

Finding resources for continuous security learning

Beyond the OWASP Top 10, developers can learn security through internal hackathons, online platforms, community meetups, and exploring red team versus blue team concepts.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Organizing a developer conference for 15,000 attendees
01:32 MIN

Organizing a developer conference for 15,000 attendees

Cat Herding with Lions and Tigers - Christian Heilmann

Selecting strategic partners and essential event tools
03:17 MIN

Selecting strategic partners and essential event tools

Cat Herding with Lions and Tigers - Christian Heilmann

Using content channels to build an event community
04:49 MIN

Using content channels to build an event community

Cat Herding with Lions and Tigers - Christian Heilmann

Increasing the value of talk recordings post-event
04:57 MIN

Increasing the value of talk recordings post-event

Cat Herding with Lions and Tigers - Christian Heilmann

Rapid-fire thoughts on the future of work
02:44 MIN

Rapid-fire thoughts on the future of work

What 2025 Taught Us: A Year-End Special with Hung Lee

Why HR struggles with technology implementation and adoption
04:22 MIN

Why HR struggles with technology implementation and adoption

What 2025 Taught Us: A Year-End Special with Hung Lee

Developing resilience by expanding your capacity for failure
04:57 MIN

Developing resilience by expanding your capacity for failure

What 2025 Taught Us: A Year-End Special with Hung Lee

Balancing the trade-off between efficiency and resilience
03:38 MIN

Balancing the trade-off between efficiency and resilience

What 2025 Taught Us: A Year-End Special with Hung Lee

Featured Partners

Related Videos

See all videos
Simple Steps to Kill DevSec without Giving Up on Security21:53

Simple Steps to Kill DevSec without Giving Up on Security

Isaac Evans

Building Security Champions48:02

Building Security Champions

Tanya Janca

Real-World Security for Busy Developers29:50

Real-World Security for Busy Developers

Kevin Lewis

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?27:36

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Tino Sokic

What The Hack is Web App Sec?24:01

What The Hack is Web App Sec?

Jackie

Why Security-First Development Helps You Ship Better Software Faster22:18

Why Security-First Development Helps You Ship Better Software Faster

Michael Wildpaner

Security Pitfalls for Software Engineers27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

How GitHub secures open source25:28

How GitHub secures open source

Joseph Katsioloudes

Related Articles

View all articles

From learning to earning

Jobs that call for the skills explored in this talk.