Talk: Prioritizing Security correctly
Have you ever struggled with prioritizing a security feature (or backlog issue), or even struggled with describing your security feature so your stakeholders understand why it is important?
All products needs to take security into account. However, spending to much time on security can be just as bad for your product as spending to little.
In this talk, I will show why we need to treat security features just as any other functional feature, and how this can be done.
After managing security products for 15 years, I have learned some techniques that makes defining security features easier.