Laura Bell emphasizes moving away from overreliance on SAST in DevSecOps, focusing on developer experience. Effective security ownership is achieved through better communication and boosting engineer productivity.
Laura Bell applauds DevSecOps for uniting development, security, and operations, but warns against siloing. Segregation arises from cultural barriers, such as security initiatives tied to CI/CD, not the development teams.
Nikki Robinson advocates for 'platform security engineering,' treating developers as customers. She stresses the need for open communication and understanding of developer experiences to ensure success in engineering practices.
[
add
]
[
|
|
...
]