Product security programs are intense; running a successful program at a large-scale organization like Comcast is complexity at the next level. This deep dive into the nuances of the program at Comcast will describe how tools, experts and gamification enable secure development at the scale of a Fortune 50 organization.

Key Takeaways:

• Branding a company-wide SDL program and presenting consistent taxonomy drives alignment and measured progress
• Innovate for change, enabling threat models to address privacy risk and scale for large organizations
• Change Your Lens: Pen testing teams should evolve to address emerging threats and scale their services to protect large enterprises
• Gamify: Provide a single pane of glass for security work and a weighted score with fairness to drive friendly competition

SDL coaching is key to helping teams continually mature in making security part of their culture.