Original Post: Engage your champions
The article discusses strategies for engaging security champions once they have been recruited. To involve IT professionals in security initiatives, it’s essential to make participation interesting and rewarding. The author suggests several methods to motivate these champions:
1. Involve them in real security incidents to understand the impact of insecure code.
2. Share sensitive information when appropriate, and involve them deeply in the process.
3. Give them early access to new tools, documents, policies, and solicit their feedback.
4. Create a dedicated mailing list for sharing relevant security updates and resources.
5. Hold monthly 1:1 meetings to discuss ongoing work and challenges.
6. Organize team-building events to foster camaraderie.
7. Encourage participation in security communities like OWASP and We Hack Purple Community.
Finally, the author hints that the next article will focus on providing training for security champions.
Go here to read the Original Post