When Application Security - The Wrong Way - Is the Right Thing for Your Organization

Explore innovative approaches to application security in this 45-minute RSA Conference talk. Learn how Target's security team transformed from enforcers to teachers, implementing a "credit score" system for measurement practices, creating an exclusive security champions program, and revolutionizing scanning processes. Discover the challenges faced during IT transformation and the unconventional solutions that led to success. Gain insights into portfolio dashboards, security guilds, and the unique "Security Ninja" concept. Understand the lessons learned and receive practical advice for applying these strategies in your own organization. Suitable for those with a basic understanding of security testing tools, but prior knowledge is not required.

Introduction
Targets IT Transformation
No Single Measurement
Product Intelligence
Portfolio Dashboard
Security Guild
Security Ninja
What is a Security Ninja
Initial Onboarding
Testimonials
Scan All The Things
What We Learned
Lessons Learned
Advice
Questions