Winning the Culture War: Infusing Security into the Software Development Culture

  • Wednesday, 14 Dec 2016 3:00PM EST (14 Dec 2016 20:00 UTC)
  • Speakers: Mark Geeslin, Setu Kulkarni

There is a good deal of talk these days about DevSecOps and Secure Development. To those working in the industry, the goals and benefits of infusing security into the development culture are quite clear and well understood. However, the process of achieving those goals and benefits is another matter entirely. How does a development organization move from point A to point B? How is a culture fundamentally transformed from one that treats security as a burden, necessary evil, or nice-to-have, at best, to one that truly embraces security, making it a priority on a par with system functionality and stability?

The adoption of a DevSecOps model, or even a less ambitious secure development model, requires some rather significant shifts in philosophy and practice for both Development and Security in order to be effective. In this webinar we will discuss practical techniques and strategies, as well as the philosophical positions underlying those strategies, that have actually been employed, and proven effective, in moving organizations to a secure development culture.