Security Metrics That Count

Presented at ShellCon 2021 Virtual, Oct. 8, 2021, 1 p.m. (55 minutes).

How do you talk security to leadership? How do you convince leadership to dedicate resources to fix issues found by your security capabilities? Do you have an answer when your CEO or CTO asks you what risks exist in a particular Business Unit or Product within the company?

Over the past year, we have been working on ways to create meaningful metrics at scale within Twilio and use them to drive change. In this presentation we will talk about motivations, challenges and how we built automated near - real time metrics that helped us use a data driven approach to working with engineering teams to move the needle forward on Twilio's security posture.


Presenters:

  • Yashvier Kosaraju
    Yash oversees the Product Security Org at Twilio Inc. Prior to Twilio he was working to help secure Box. He has been working in security for almost a decade, working in a variety of roles ranging from consulting to enterprise product security teams.
  • Harini
    Harini manages the Product Security Team at Twilio. She has been in the appsec space for 6 years helping secure finance & retail orgs prior to joining Twilio.

Links:

Similar Presentations: