Security Leadership is part of our Engineering Career Leveling Framework. Explore next steps in your career from this industry-standard model.
Curated Learning Resources
What is DevSecOps?Beau introduces the concept of DevSecOps, a model for building security thinking into the product development and launch process.
OWASP DevSecOps Maturity ModelTimo delivers a talk that outlines the DevSecOps Maturity Model (DSOMM) which describes how your security practices should grow with your company across numerous dimensions- Written DevSecOps Maturity ModelA written version of the DevSecOps Maturity Model along with tips on how to adopt this model. Use this to see how your company stands today and to inform how your security practices should evolve.
Psychological safety in the InfoSec industryJacob offers three root-causes behind a lack of psychological safety in the security world. For each, he gives concrete ideas on how to combat this on your team.
A key performance indicator for infosec organizationsThis post offers ideas for metrics and tactics communicate security performance upwards in the organization, a notoriously difficult task.
Related Skills
- Incident Response
- Refactoring
- Generative AI
- Tech Lead Role
- Product Development Flows
- Engineering Director Role
- Security Principles
- Tech Talks
- Engineering Career Ladders
- Code Reviews
- Data Modeling
- Intro to Eng Management
- Testing & Quality
- Software Design Docs
- Microservices
- Web Engineering
- Hiring Engineers
- CTO's Role
- Clean Code
- Software Architecture
- Estimation
- Senior Engineer
- Documentation
- Technical Debt
- Mentorship for Engineers
- Product-Focused Engineering
- Scoping
- Asking for Help
- Configuration at Scale
- Principal Engineer
- On-Call Rotation
- Structuring Engineering Teams
- Debugging
- Continuous Deployment
- Reliability Leadership
- Reliability Principles
- VP Engineering Role
- Tech Writing
- Monitoring & Observability
- Mobile Engineering
- Pair Programming
- Development Velocity
- Onboarding Engineers