This Monday I had participated in OWASP Poland Day 2017 which took place in Krakow. It was one day mini conference with 2 tracks! Guys from OWASP Poland chapter had made a good job and had orginized it wery well. Especially for the first time! Hope that here in Russia we will make at least local chapter meetup this year. May be after ZeroNights in December.
My talk was titled "Security in developer’s life: knowledge is power" (slides). Everyone knows that automation is the security answer on agile development problem. In the same time it is much better to write secure code at first ;) So application security should be present in the developer's life! One part of it is the process around knowledge base (central security information portal). How to make developers read security guides and how to measure the result? How to use these metrics in other security activities? In the talk I had shared our case studies in this area.