Session Name: #NoHobbyists: Building A Shared Cybersecurity Culture
Cybersecurity has traditionally been regarded as a function of a distinct security group. In reality, security and cyber resilient software are the responsibility of everyone in the organization. There is a well-intended call to "shift security left" but no one knows how! Instead, organizations are depending on developers to become cyber-savvy on their own. Cyber security cannot depend on Hobbyists! Attendees will learn about why to *not* shift left and how to build a new security culture using gamification and team-based threat modeling. Attendees will be introduced to the importance of a secure software development framework (SSDF) and walk away with tips, tricks, and tools for moving away from security hobbyists to having experienced pros.
Passionate Architect!!! Tracy (Trac) Bannon is a Senior Principal in MITRE Corporation’s Advanced Software Innovation Center. She is an accomplished software architect, engineer, and DevSecOps advisor having worked across commercial and government clients. She thrives on understanding complex problems and working to deliver mission/business value at the speed. Trac walks the walk and talks the talk. She’s just as passionate about mentoring and training as she is about delivering valuable software! She enjoys community and knowledge building with her teams, her clients, and the next generation of technologists by guest lecturing at universities, leading working groups, and sharing experience stories. Trac is a long-time advocate for women in technology, helping to narrow the gender gap as a mentor, sponsor, volunteer, and friend. As an author and speaker, Trac is a featured speaker and panel moderator at industry events. She holds certifications from Microsoft, AWS, DevOps Institute, PMI, Scrum Alliance, and the Software Engineering Institute (SEI).