DevOps and Beyond

VSTH04 Scaling AppSec through Cultural Change and Developer Experience


8:00am - 9:15am

Level: Intermediate

Colin Dembovsky

Field Solution Engineer


Application Security (AppSec) remains one of the biggest challenges facing organizations today, and the security professional to developer ratio of ~1:800 isn't helping. Most organizations have looked to tooling and traditional security teams and processes to try to meet this challenge: the brutal truth is that this is failing.

In this session, we look at a brief history of AppSec. We then look at how Team Topologies by Matthew Skelton and Manuel Pais can help organizations scale scarce security expertise through cultural change. Finally, we look at how GitHub Advanced Security and a focus on Developer Experience can practically drive cultural change and make organizations successful at modern AppSec.

You will learn:

  • About Team Topologies
  • How to apply Team Topology learnings to Application Security
  • How GitHub facilitates modern Application Security at scale