In this episode of the Future of Application Security, Harshil speaks with Curtis Koenig, Head of Application Security at Gen, a multinational software company that provides cybersecurity software and services. They discuss why it's key to be able to articulate why security matters and how it impacts business goals, and what Curtis has learned about how different industries approach risk. They also talk about how security can help engineering be more efficient by speaking their language, various metrics that can assess your training and communication, and what the future of LLMs and security looks like.

Topics discussed:

• Curtis's background in various industries and what he's learned about how culture, goals, and risk vary.
• How learning about a company's culture and goals first can help you translate how security matters to them.
• How to create a security strategy roadmap, how often to revisit those goals, and how to incorporate frameworks to sell across the business.
• How security can help engineering be more efficient by speaking their language and translating information into actionable tasks.
• What metrics to track that can help you learn more about how well your training and operations are working.
• How LLMs are helping with software development today, and why they can introduce more security issues if developers aren't thinking wisely about using it.