in their Sprints to improve their security, possibly a series of these? 2. Session on what goes into a good build pipeline 3. A walk through the new OWASP API Security Top 10 and how they compare with the OWASP Top 10 Web Application Security Risks 4. Threat modelling code, how to do it? how to get the most out of it? 5. OWASP tooling and all the new projects that are happening
so, how? How can you improve this? What do we need to be thinking about in our jobs in relation to InfoSec and personal OpSec? What must orgs and us personally be considering in order to sustain/create data, application, infrastructure and personal security while still considering efficiencies and user experience?