To developers, security frameworks often feel like top-down friction and annoying additional work. This talk tries to flip the script, showing how to transform OWASP SAMM activities from an audit checklist into an engineering enabler. We’ll explore the developer’s “What’s In It For Me?” and demonstrate how to pragmatically tailor SAMM activities to reduce rework, automate feedback, and seamlessly integrate security into daily dev workflows.
Speaker Bio
For more than fifteen years, Clemens Hübner has been working at the interface between software and security. After working in pentesting and as a software security engineer, he started focusing on building secure development processes. Today, he supports development organisations, focussing at conception and implementation level, advises on DevSecOps, and gives trainings.
We use analytics cookies to understand how visitors use this site. See our privacy policy.
Cookie preferences
Necessary
Required for the site to work. Cannot be disabled.
Always on
Analytics
Helps us understand how visitors use the site (Google Analytics and Scarf page-view pixels on SAMM model pages). No personally identifiable information is collected.
