Developers dislike security and won't always admit it. In a DevSecOps world, devs become security people, but did anyone ask dev? Devs dislike security because security doesn't understand, and often tries to force a process and toolset. Explore the ten main frustrations that cause a security dislike, dev empathy, and a collaborative- and culture-focused solution to address these frustrations.

RSA® Conference, the world’s leading information security conferences and expositions, concluded its 30th annual event, which took place as a fully virtual experience this week. This year’s theme was Resilience, and in honor of all that the cybersecurity industry has accomplished over the past three decades, offered a must-attend celebration of thought leadership and education.


More than 20,000 people registered to view 449 sessions including, keynotes, track sessions, interactive programs, tutorials, seminars, and many special digital-first programs that focused on best practices and innovation. The content covered many of the industry’s most pressing topics, including privacy, machine learning and artificial intelligence, analytics, anti-fraud, policy and government, and risk management and governance.

Developers Dislike Security: Ten Frustrations and Resolutions

Conference: RSA Conference 2021

Abstract

Post a comment

Related work

Day in the Life of a Base Image: The Evolution of Vulnerabilities in the Most Popular Containers

Building Better CSIRTs Using Behavioral Psychology

Fight Back Against Cyber Risk in the Software Supply Chain with a Secure and Compliant DevSecOps Pipeline for Regulated Environments

Going Beyond Coverage-Guided Fuzzing with Structured Fuzzing

Securing the Superpowers: Who Loaded That EBPF Program?

Shield with Hole: New Security Mitigation Helps Us Escape Chrome Sandbox to Exfiltrate User Privacy