Stories π¶
We want to highlight stories from our teams, to promote both learning and sharing culture, in the context of security.
What is a story?¶
A few examples:
- Something that went wrong in a project, how it was fixed, and lessons learned
- New feature added to improve security and the road to implementation
- New routines or ceremonies that has helped the team
If you have something in mind, consider writing a story. It's even an activity to reach the brown/black belt!
Info
Please use the below template and send it to the AppSec team on Slack or e-mail at appsec[at]equinor.com
How to get started¶
Feel free to include pictures to illustrate, and provide sources where applicable.
-
The title:
Every story needs a snappy title. -
The team:
This is normally you and your team. -
Initial situation:
This is the initial situation of why you are telling the story. Did some security control go wrong? Did a new feature get in the backlog? -
The mission:
What activities was made to improve or remediate the initial situation? What challenges occurred along the way? Usually the part where readers can learn something to take home, or get new ideas. -
Outcome:
What was the outcome? Did it improve the initial situation and give some new learning to the team?
Tips
Try to add technical and quantifiable information to the story to better showcase the value.