What does it take to have a successful SDLC program? In this talk, I step beyond the policy, and share my experiences turning a failing software development team into one that was both fast and reliability-oriented. There is a secret ingredient that can make your software development fast, reliable, and secure.

That secret ingredient is a culture of quality.

I will then share the three principles for building a culture of quality:

  1. Invest with Intention
  2. Engage with Engineering
  3. Transform with Time

I will also discuss at a high level how I implemented these principles in an environment facing severe headwinds, and what that means for your own adoption.

Read More

Services: The AppSec Inflection Point
AppSec teams should adopt a service-oriented model and API proxies to improve security across stacks.
The Shadow Software Supply Chain
StackOverflow and GitHub Co-Pilot have made untrusted code rampant in production applications. A focus on services will help mitigate the risks and enhance security.

Learn to Build Security that Scales

Sign Up for my e-mail newsletter to get updates whenever I post.

Sign Up