droidcon NYC ’19: Building a Security Assurance Program
Security breaches cost enterprises millions—and your assurance programme is the first line of defence. This droidcon NYC session cuts through the noise to show you how to architect, implement, and maintain a security assurance framework that actually sticks. Whether you’re scaling from startup to enterprise, you’ll walk away with a repeatable playbook.
AIU.ac Verdict: Ideal for security leads, engineering managers, and compliance officers who need to move fast without cutting corners. The 37-minute format is punchy but assumes you’re already familiar with security fundamentals—if you’re starting from zero, pair this with broader cybersecurity grounding first.
What This Course Covers
This session unpacks the core pillars of a security assurance programme: governance structures, risk assessment workflows, and continuous compliance monitoring. You’ll see real patterns from droidcon’s speaker experience—how to define security ownership, build cross-functional buy-in, and measure assurance maturity without drowning in process.
Expect practical takeaways on threat modelling integration, security testing cadences, and incident response readiness. The focus is on what actually works at scale, not theoretical frameworks. You’ll leave with templates and decision trees you can adapt to your own organisation’s risk profile and team capacity.
Who Is This Course For?
Ideal for:
- Security & Compliance Leaders: Building or refining assurance programmes from scratch; need a structured approach to governance and risk management.
- Engineering Managers & Tech Leads: Responsible for embedding security into development workflows; want to balance speed with assurance without slowing delivery.
- Startup & Scale-up Founders: Moving into regulated spaces or raising Series B+; need to demonstrate credible security posture quickly.
May not suit:
- Security Beginners: No foundational cybersecurity knowledge; will struggle without prior exposure to threat models, compliance frameworks, or risk concepts.
- Individual Contributors (Non-Leadership): Focused on hands-on coding or penetration testing; this is programme-level strategy, not technical execution.
Frequently Asked Questions
How long does droidcon NYC ’19: Building a Security Assurance Program take?
37 minutes. Designed as a focused session you can complete in one sitting or split across a couple of days.
Do I need prior security certifications to benefit from this course?
No formal certs required, but you should be comfortable with basic security terminology (threat, vulnerability, compliance). If you’re new to security, start with foundational Pluralsight courses first.
Will this teach me how to conduct security audits or penetration testing?
No. This is about programme design and governance, not technical testing. It’s the ‘why’ and ‘how to structure’, not the ‘how to execute’ technical controls.
Can I apply this to non-tech organisations?
The core principles (governance, risk assessment, compliance monitoring) are universal, but examples and context are tech-focused. Adapt the framework to your industry’s regulatory environment.
Course by droidcon NYC on Pluralsight. Duration: 0h 37m. Last verified by AIU.ac: March 2026.
