The Secure Developer: Keeping PagerDuty Secure

PagerDuty's security team emphasizes collaboration over obstruction by developing tools and policies that facilitate secure practices while engaging with all organizational departments, as discussed in a conversation with Guy Podjarny from The Secure Developer. They strive to make security an operational concern similar to the Ops to DevOps transition, focusing on education and innovation, such as their in-house security training program that highlights password vulnerabilities and promotes password manager usage to enhance both professional and personal security. The team also discussed their experiences implementing two-factor authentication using Duo and Yubikeys, as well as leveraging operational tools like Splunk and Chef for security purposes, while acknowledging challenges in tool adoption and decision-making processes.