Tag Archives: culture

A week

of culture.

Posting all week about culture has been inspiring and insightful. Reading about culture, specifically application security culture, there is no doubt that the way a team plays together, stays together also secures together. There is a direct synchronous correlation between how well a team works together and the results they receive.

For those teams where the culture is unified with a common direction, their application security efforts prove time and again that deployments to production have been rigorously tested end-to-end throughout the software supply chain. I also realised that culture is predominantly about people, small teams of people, working well together, that change the direction of a corporation, and significantly reduce risk.

So in reflection, they way the application security team, plans, builds, delivers and protects the corporation assets has a continuous effect on the bottom line. They also reverberate throughout the corporation, where historically, security teams are the last defence, the tides have now turned where inclusivity ensures security is part of the process from the get go.

The week ahead will cover container security, and I am looking forward to reading, writing and sharing on this “misunderstood” and critical part of application security.

“I believe you have to be willing to be misunderstood if you’re going to innovate.” Jeff Bezos

Determined

To continue my writing ….

As I look back on a month of bi-daily Application Security posts to linked in, I have realised a few things. Notably that it is achievable! Also, my reading has increased which compliments my writing. Condensing my learning into single succinct paragraphs has been the ongoing challenge I set myself. Also on some days, the precious things in life do take precedence over my writing and thats ok. Knowing that I have the next day to writing something meaningful and add value to the Application Security Community gets me enthusiastic to read, digest, condense and contribute.

So after 30 days, I’m upping my own ante. I will continue my twice daily posts to LinkedIn, however I will now post daily to twitter in a true micro blog fashion with only the hashtag #appsec. I will also post to my blog once a week as I am now. Let’s check in at day 60 and set some more writing goals.

I have also learned that there is a wealth of Application Security information out there, that is on point and relevant to the community, and consumers of the content.

As I am writing this, I just had an epiphany. I shall write weekly focused on an Application Security subject on all platforms. The week ahead shall be geared around Application Security Culture.

“If we are to preserve our culture, we must continue to create it.” – Johan Huizinga

saljanssen, sal, janssen, devsecops, appsec, appsecurity, applicationsecurity
fin DAC