Stefania Chaplin
Secure Code Superstars: Empowering Developers and Surpassing Security Challenges Together
#1about 3 minutes
Understanding the recurring bug cycle and its impact
Recurring vulnerabilities like SQL injection create a cycle of context switching and developer burnout that goes beyond the OWASP Top 10.
#2about 3 minutes
Breaking down silos between developers, security, and operations
Misaligned KPIs and communication gaps between developers, security, and operations teams can be bridged by creating a culture of security champions.
#3about 6 minutes
Integrating security tools into the developer workflow
Empower developers with free OWASP tools like Zap and dependency checkers, and integrate automated scanning and just-in-time training directly into the CI/CD pipeline.
#4about 2 minutes
Sharpening the saw with personal well-being and learning
Applying the "sharpen the saw" principle through continuous learning and maintaining personal balance helps prevent burnout and improves developer flow.
#5about 2 minutes
Key strategies for building a secure code culture
Build a stronger security posture by prioritizing time to learn, addressing technical debt, adopting an empathetic approach, and using OWASP resources.
#6about 1 minute
Transitioning from a developer to a security role
To move from development to security, start internal conversations, join a security champion program, and explore your company's specific security priorities.
#7about 1 minute
Finding resources for continuous security learning
Beyond the OWASP Top 10, developers can learn security through internal hackathons, online platforms, community meetups, and exploring red team versus blue team concepts.
Related jobs
Jobs that call for the skills explored in this talk.
Matching moments
03:58 MIN
Making accessibility tooling actionable and encouraging
Developer Time Is Valuable - Use the Right Tools - Kilian Valkhof
05:55 MIN
The security risks of AI-generated code and slopsquatting
Slopquatting, API Keys, Fun with Fonts, Recruiters vs AI and more - The Best of LIVE 2025 - Part 2
03:16 MIN
Improving the developer feedback loop with specialized tools
Developer Time Is Valuable - Use the Right Tools - Kilian Valkhof
01:06 MIN
Malware campaigns, cloud latency, and government IT theft
Fake or News: Self-Driving Cars on Subscription, Crypto Attacks Rising and Working While You Sleep - Théodore Lefèvre
03:07 MIN
Final advice for developers adapting to AI
WeAreDevelopers LIVE – AI, Freelancing, Keeping Up with Tech and More
01:15 MIN
Crypto crime, EU regulation, and working while you sleep
Fake or News: Self-Driving Cars on Subscription, Crypto Attacks Rising and Working While You Sleep - Théodore Lefèvre
02:55 MIN
Why developers often undervalue their time and paid tools
Developer Time Is Valuable - Use the Right Tools - Kilian Valkhof
01:32 MIN
Organizing a developer conference for 15,000 attendees
Cat Herding with Lions and Tigers - Christian Heilmann
Featured Partners
Related Videos
21:53Simple Steps to Kill DevSec without Giving Up on Security
Isaac Evans
48:02Building Security Champions
Tanya Janca
29:50Real-World Security for Busy Developers
Kevin Lewis
27:36Unleashing the Power of Developers: Why Cybersecurity is the Missing Piece?!?
Tino Sokic
24:01What The Hack is Web App Sec?
Jackie
22:18Why Security-First Development Helps You Ship Better Software Faster
Michael Wildpaner
27:32Security Pitfalls for Software Engineers
Jasmin Azemović
42:40Building Security Champions
Tanya Janca
Related Articles
View all articles
From learning to earning
Jobs that call for the skills explored in this talk.
Code Healers LLC
Hinesville, United States of America
Remote
€30-40K
Intermediate
Senior
.NET
React
JavaScript
+2
Secunet
Remote
Python
Grafana
Terraform
Kubernetes
+1
Accenture
Municipality of Madrid, Spain
API
C++
GIT
Java
.NET
+25
Siemens AG
München, Germany
API
GIT
Ruby
Docker
Ansible
+4