Scaling Security in Leading Companies - DevOps and CI/CD Best Practices

Explore effective strategies for scaling security in modern software development environments through this OWASP AppSec EU 2018 conference talk. Discover pro-tips and actionable lessons from mature security teams in San Francisco Bay Area software companies. Learn how to gain buy-in for security requirements, implement high-value engineering projects to prevent bugs, and understand the trade-offs of static and dynamic analysis. Gain insights on integrating security checks into CI/CD processes, monitoring production for malicious activity, and leveraging open-source tools. Walk away with specific steps to enhance your organization's security posture, perspectives on addressing common challenges, and ambitious long-term security goals.