Name: Scale Security Programs with Scorecarding
Start: 2025-05-30T13:15:00+0200
End: 2025-05-30T14:00:00+0200

Friday May 30, 2025 1:15pm - 2:00pm CEST

Room 115

Security teams increasingly take a collaborative, partnership-based approach to securing their applications and organizations. Scaling these efforts requires thoughtfully distributing awareness and ownership of security risk. Scorecarding is used at leading companies to make security posture visible, actionable, and engaging across the entire organization.

In this session, we’ll dive into how companies like Netflix, Chime, GitHub, and DigitalOcean use scorecarding to distribute security ownership, drive continuous improvement, and align risk management with business goals. You’ll walk away with practical, tool-agnostic strategies for implementing your own scorecarding program that not only enhances security posture but fosters a culture of shared responsibility and proactive risk management.

Speakers

Rami McCarthy

Principal Security Researcher, Wiz

Rami is a practitioner with expertise in cloud security and building impactful security programs for startups and high-growth companies. In past roles, he helped build the Infrastructure Security program at Figma and scale security at Cedar, a health-tech unicorn. Rami regularly blogs... Read More →

Friday May 30, 2025 1:15pm - 2:00pm CEST
Room 115

Breakout: Manager/Culture Track

Audience Intermediate

OWASP 2025 Global AppSec EU

Rami McCarthy

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!