While security practitioners often rely on “best practices” in our software security programs, have we taken the time to evaluate their effectiveness?
Let's shake things up and really look at these practices by hearing from attendees, sharing past experiences, and questioning the norm. We'll figure out which practices are actually useful and which ones might need a fresh perspective.
Our open discussion can go in many directions, but here are some potential questions we’ll likely cover:
- What are the commonly accepted software security best practices?
- Are these practices effective in real-world scenarios?
How do these practices impact developers and their workflow?
Should any of these practices be reconsidered or updated?
How can we better align security practices with actual needs?
Note: this is not a lecture/talk, but rather an open discussion driven by your own experiences and insights. Come share your knowledge and opinions, or just listen and learn, while we work together to come up with solutions that improve the software security landscape of our companies.
We do not record our sessions and follow Chatham House Rules in order to protect the privacy, identity, and reputation of our participants while encouraging open and honest conversation.
Colorado = Security
Check out our resources in the navigation bar.