Supporting, influencing, and leading as a security practitioner

How security folks can lead engineering teams from the sidelines

By Izar Tarandach

March 09, 2022

Pushing security practices is a bit like selling insurance; people know they need it but nobody enjoys the associated costs.

I learned this the hard way when I switched roles from developer to security advisor. I was given security responsibility over a set of products without being made part of their development team. I was to help them improve their security posture from the outside.

My plan was quite simple – and naive. I’d talk to the decision-makers; they’d see the value inherent in employing security best practices; we’d identify the gaps in the current status; make a plan to fill those up; they’d incorporate those in their objectives; and everyone would be happy.

Join LeadDev.com for free to access this content

Create an account to access our free engineering leadership content, free online events and to receive our weekly email newsletter. We will also keep you up to date with LeadDev events.

We have linked your account and just need a few more details to complete your registration:

First name Last name Job title Company Country

Terms and conditions I agree to the LeadDev.com terms and conditions of use

Create a password

About the author

Izar Tarandach

Newsletters

Webinars

Videos

Reports

For you

New York

Berlin

London

Meetups

Supporting, influencing, and leading as a security practitioner

By Izar Tarandach

Join LeadDev.com for free to access this content

About the author

Izar Tarandach

New York

Berlin

London

Meetups

Supporting, influencing, and leading as a security practitioner

By Izar Tarandach

Join LeadDev.com for free to access this content

Share:

About the author

Share:

More like this