Let’s talk about last year’s perspective research. Researchers have gathered a wealth of interesting material. Let’s go through the reports to see what can be applied in practice and what is worth deeper exploration.
В начале была проблема. В международной корпорации, где вместе с командой продуктовой безопасности я строил процессы разработки, была нехватка инженеров Application Security. На несколько тысяч разработчиков оказалось всего несколько AppSec-специалистов, и с ростом скорости производства становилось сложнее исправлять обнаруженные дефекты.
First, there was a problem. There was a shortage of application security engineers in the international company where I was working with the product security team to build development processes. With only a few AppSec specialists for thousands of developers, it became increasingly difficult to address identified issues as the pace of production accelerated.