Speaker Details

In a world where security training often feels like a mundane chore, discover the refreshing impact of gamification and turn learning into an enjoyable experience. Embark on an insightful journey as we unveil the success story of gh.io/secure-code-game, an open-source game hosted on GitHub Skills, that attracted over 5,000 developers within its first year.

This session will provide you with an exclusive behind-the-scenes perspective, offering valuable insights and practical strategies to revolutionize various aspects of security training for your benefit. We’ll explore a case study from a tech startup that observed, among the developers who played the game, an increased sense of ownership for code security, improved communication with security teams, and a strong willingness to embrace further security training.

Discover the impact of AI, Developer Experience (DevEx), and communities on software security through real-world examples derived from securely building GitHub using GitHub. Uncover valuable insights into the dynamic interplays between these three transformative forces, paving the way for a new era in software development and, consequently, for software security.

This session will provide you with an exclusive behind-the-scenes perspective, offering insights into how GitHub enhances various elements of the Secure Software Development Life Cycle (SSDLC), benefiting from each driving force and their interplays. We will explore practical strategies for software security, supply chain, secrets hygiene, automation and security culture. The audience will gain a deep understanding of industry-leading software practices, drawn from our experiences as developers helping others with security in a rapidly changing landscape.