Secure Development - Why Some Product Teams Excel in Security and Others Don't

Explore a 37-minute conference talk from AppSecCali 2019 that delves into the security practices of product teams at Riot Games. Discover why some teams excel in security considerations while others fall short. Learn about the predictable security patterns and behaviors exhibited by different product teams. Examine metrics from bug bounty programs and security review processes to understand the impact of team culture and processes on product security. Gain insights into a framework for assessing team performance and identifying areas for improvement. Consider agile methodologies and explore tools that can be introduced to product teams to enhance their security practices. Benefit from the experiences shared by Koen Hendrix, Development Manager in InfoSec at Riot Games, who has worked closely with various security teams during his tenure.

AppSecCali 2019 - (in)Secure Development - Why some product teams are great and others … aren’t...