Developing an AppSec Program for Fast Moving Teams

Understanding what an application security program and roadmap are, why they are important and how they are structured How to measure and understand your current maturity level including how to use OWASP SAMM and OWASP ASVS for measuring your existing programs or practices from a product and lifecycle perspective. Setting realistic expectations and goals for your program Defining what actions you can take to weave security through your software development lifecycle Understanding how to measure progress as you implement your program Anticipating and planning for common challenges we encounter when developing and implementing an application security program.


Laura Bell Main

CEO @SafeStack

With over twenty years of experience in software development and application security, Laura Bell Main specializes in bringing #appsec and #SecureDevelopment practices into organizations worldwide.

She is the co-founder and CEO of SafeStack, an online education platform offering flexible, high-quality, and people-focused secure development training for fast-moving companies, focusing on building application security skills, practices, and culture across the entire engineering team.

Laura is an experienced conference speaker, trainer, and regular panel member and has spoken at various events such as BlackHat USA, NDC, RenderATL, and OSCON on application security, DevSecOps, secure development, and security mindset.

She is also the co-author of "Agile Application Security" and "Security for Everyone."

Read more


Friday Oct 6 / 01:00PM PDT ( 3 hours )


Seacliff D


Level beginner