In this episode of the Scale To Zero podcast, we dive deep into the world of Security Champions with our guest speaker Bonnie Viteri, a seasoned cybersecurity expert. We explore how to build, scale, and maintain a thriving Security Champions program that truly makes a difference.

Watch on YouTube: https://youtu.be/3bpNxeKmWug

Bonnie: https://www.linkedin.com/in/bonniebyer-viteri/ScaleToZero: https://www.scaletozero.com/

Cloudanix: https://www.cloudanix.com/

Here's what we covered:

00:00 Teaser and Introduction

03:15 Defining the role of a security champion

04:45 Signals to identify a security champion when working with development teams

06:00 Real life example of someone turning into an excelent security champion

07:50 Why security teams at Yahoo are called paranoids?

09:16 How does a security champion evolve over time?

11:20 Principles of successful security champions program

13:55 Scaling security champions program along with organization's growth

16:28 North star for scaling security champions program

19:14 Differences in building champions program at startup vr large orgs

22:30 Aligning security champions program with business outcomes

26:00 Metrics to show alignment and progress of security program

28:55 Data driven security champions program for non-believers

31:46 Keeping security champions program fresh and relevant

34:28 Keeping individual security champions engaged and happy

37:50 Tips to prevent burnout

39:34 Examples of recognition and appreciation of security champions

42:39 Bridging gaps between security teams and other business teams

45:45 Challenges of fostering collaboration between security and other business teams

48:28 Summary

49:27 Learning recommendations