Overview
Explore how security, development, and testing teams can collaborate to prevent recurring vulnerabilities in the OWASP Top 10 in this 27-minute conference talk by Stefania Chaplin. Examine the persistence of common vulnerabilities across OWASP Top 10 updates and learn strategies for fostering a culture of shared security responsibility. Discover methods to motivate developers, put a positive spin on security, and break down silos between teams. Gain insights into embedding security practices within the developer workflow and software development lifecycle, combining both technical and soft skills. Cover topics such as SQL injection, insecure design, changing organizational culture, and implementing security champion programs to create more secure software.
Syllabus
Intro
Agenda
About me
Top 10 through the ages
The iceberg
Statistics
Personas
SQL Injection
Breaking the Cycle
Embed Security
Insecure Design
Changing Culture
Recurring Vulnerabilities
Security Champions
Summary
Outro
Taught by
OWASP Foundation