Stefania Chaplin

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together

What if you could solve your biggest security challenges by making every developer just one percent better? Learn how to do it without causing developer burnout.

Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together
#1about 3 minutes

Understanding the recurring bug cycle and its impact

Recurring vulnerabilities like SQL injection create a cycle of context switching and developer burnout that goes beyond the OWASP Top 10.

#2about 3 minutes

Breaking down silos between developers, security, and operations

Misaligned KPIs and communication gaps between developers, security, and operations teams can be bridged by creating a culture of security champions.

#3about 6 minutes

Integrating security tools into the developer workflow

Empower developers with free OWASP tools like Zap and dependency checkers, and integrate automated scanning and just-in-time training directly into the CI/CD pipeline.

#4about 2 minutes

Sharpening the saw with personal well-being and learning

Applying the "sharpen the saw" principle through continuous learning and maintaining personal balance helps prevent burnout and improves developer flow.

#5about 2 minutes

Key strategies for building a secure code culture

Build a stronger security posture by prioritizing time to learn, addressing technical debt, adopting an empathetic approach, and using OWASP resources.

#6about 1 minute

Transitioning from a developer to a security role

To move from development to security, start internal conversations, join a security champion program, and explore your company's specific security priorities.

#7about 1 minute

Finding resources for continuous security learning

Beyond the OWASP Top 10, developers can learn security through internal hackathons, online platforms, community meetups, and exploring red team versus blue team concepts.

Related jobs
Jobs that call for the skills explored in this talk.

Matching moments

Fostering a developer-first security culture
01:17 MIN

Fostering a developer-first security culture

Walking into the era of Supply Chain Risks

Scaling AppSec teams by empowering developers
03:15 MIN

Scaling AppSec teams by empowering developers

Why Security-First Development Helps You Ship Better Software Faster

Why security teams must scale through developer collaboration
02:54 MIN

Why security teams must scale through developer collaboration

Building Security Champions

Addressing the security education gap for developers
03:34 MIN

Addressing the security education gap for developers

Climate vs. Weather: How Do We Sustainably Make Software More Secure?

Balancing developer and stakeholder security priorities
04:25 MIN

Balancing developer and stakeholder security priorities

What The Hack is Web App Sec?

From vulnerability researcher to automated security founder
05:31 MIN

From vulnerability researcher to automated security founder

The transformative impact of GenAI for software development and its implications for cybersecurity

Making web application security accessible to developers
01:24 MIN

Making web application security accessible to developers

What The Hack is Web App Sec?

Shifting security left with collaborative threat modeling
03:08 MIN

Shifting security left with collaborative threat modeling

We adopted DevOps and are Cloud-native, Now What?

Featured Partners

Related Videos

See all videos
Building Security Champions
48:02

Building Security Champions

Tanya Janca

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes
28:01

Don't Be A Naive Developer: How To Avoid Basic Cybersecurity Mistakes

Tino Sokic

Simple Steps to Kill DevSec without Giving Up on Security
21:53

Simple Steps to Kill DevSec without Giving Up on Security

Isaac Evans

Real-World Security for Busy Developers
29:50

Real-World Security for Busy Developers

Kevin Lewis

What The Hack is Web App Sec?
24:01

What The Hack is Web App Sec?

Jackie

Security Pitfalls for Software Engineers
27:32

Security Pitfalls for Software Engineers

Jasmin Azemović

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?
27:36

Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?

Tino Sokic

Why Security-First Development Helps You Ship Better Software Faster
22:18

Why Security-First Development Helps You Ship Better Software Faster

Michael Wildpaner

Related Articles

View all articles
Chris Heilmann
WWC24 Talk - Brenda Romero - Stay: Surviving and Thriving in Tech
Brenda Romero discusses her tech career journey, overcoming burnout, and inspiring future game developers at WWC24.Here is what she had to say in the video:Hey everyone! Thanks for joining us!Reflections on a Rough YearLast year, I gave a talk about ...
WWC24 Talk - Brenda Romero - Stay: Surviving and Thriving in Tech
Benedikt Bischof
Building Security Champions
Welcome to this issue of the WeAreDevelopers Dev Talk Recap series. This article recaps an interesting talk by Tanya Janca who gave advice about how to find and teach the perfect persons to be your security champions. What you will learn:‍- How to at...
Building Security Champions
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?

From learning to earning

Jobs that call for the skills explored in this talk.