What is Security Between Us?
This is a workshop to help developers to understand the system
they work with. In it, participants build a model as a basis for
discussion of aspects of day-to-day security.
Why should I use this?
It allows developers to build up a rich picture of their
environment, especially people, processes and technology and the
relationship between them. Participants trade information about
how things work on projects, in teams and in departments.
This workshop often serves to identify what security practices
are working well, and what can be improved.
When can it be used?
- Onboarding staff or a new team
- At the start of an iteration, along with the design
To run this activity, you need:
- 60 minutes
- Two or more participants
- A facilitator
- Some Lego.
- A printed set of materials. See OrganiserInstructions.pdf
in the download pack.
This activity might be right for you if you want:
- To provide a method for developers to get up
to speed on how things are done in projects, a team, or
- To tease out factors that are supporting
secure practice, and those that are not.
- An activity that will complement technical
The sub-folder Additional Materials in the Download
Pack contains suggestions (in ModifyingTheWorkshop.docx)
and other materials to help you adapt the workshop to suit
Thierry Gregorius’s excellent blog
article and Marco Rillo's comprehensive online
book provide some background on using Lego for Serious