Empowering DevSecOps - Risk-Driven Security and Scaling Application Security

Discover two insightful talks on DevSecOps and application security scaling in this conference presentation. Begin with "The North Star: Risk-driven security" by Jonny Tyers, where you'll learn how to stay ahead of security challenges by identifying risks and vulnerabilities in code and architectures. Explore risk-first threat modeling techniques that use business risk as a guiding principle to uncover critical threats. Gain a clear understanding of your most significant weaknesses and learn how to prioritize risk-reduction efforts. Acquire a modern, flexible, and simple method for finding and reducing security risks that can be easily explained to other teams and stakeholders. Next, delve into "Weaving Application Security's Scale" by Elie Saad, which addresses the challenges of scaling application security across organizations. Examine the evolution of AppSec and explore a new approach to scaling that positions AppSec as an enabler for the wider business through strategic partnerships. Learn how to move beyond the traditional consultant model and integrate AppSec more effectively into engineering and other departmental dynamics.