The author discusses the challenges of implementing "shift left" security practices in software development, where developers are expected to identify and fix security issues early in the development process. The problem is that many developers lack built-in tools or experience to identify security threats as they're being coded, leading to impossible workloads or unachievable results. To address this issue, the author advocates for integrating security tools into monitoring and observability systems, such as New Relic Vulnerability Management and CodeStream, which provide real-time insights and alerts to developers. These tools enable developers to identify vulnerabilities in their codebase, understand how they impact performance and security, and make informed decisions about how to fix them, all within the developer's normal workflow. By using these tools, developers can effectively "shift left" security responsibilities and improve the overall quality of their code.