AppSec Champions Programs - Best Practices and Survey Results

Explore the world of AppSec champions programs and their impact on secure software development in this 26-minute OWASP Foundation talk. Dive into the results of a nine-month research survey involving 26 innovative AppSec programs, uncovering common denominators and emerging best practices. Learn about champion identification, recruitment, training, and communication strategies. Discover how organizations measure program success and gain insights into justifying and building effective AppSec champions initiatives. Understand the importance of winning developers' hearts and minds to address the secure development challenge, and equip yourself with valuable data and best practices to enhance your organization's AppSec efforts.

Introduction
AppSec Champions
Structured Research Approach
Survey Questions
Abstract Champion Program
Tool Pipeline Usage
Time to Build Program
Roles Standards
Communication
Gamification
Achieving your desired outcome
The numbers side
Key findings
Relevance to you