What is Security in the World?

This is a card-based discussion activity. It relates different views of real-world security incidents to participants' own values and experiences.

Why should I run this workshop?

The push to improve security is everywhere these days, and the pressure on developers to do more about it is strong.

However, it’s not a natural thing to contemplate how a product or service may be compromised or breached, and developers need support to reason about cyber security risks.

This workshop creates a safe space for participants to talk with each other about what security means in their software development context and why it is important.

When can it be used?

• Lunchtime
• Induction
• Away days

To run this workshop, you need:

• Between 60 and 90 minutes;
• Groups of 3-6 people: programmers and testers, and if possible product managers and team leaders;
• Preferably, a facilitator for every three groups; and
• Printed sets of instructions, stories and cards.