EP 14 — Mark Stanislav: How FullStory Continuously Measures and Improves Its Product Security Maturity

FullStory’s mission is to equip organizations with the information they need to deliver perfect digital experiences. To deliver on that mission, their platform captures customer experience data based on understanding browser interactions. In order to capture that data, it must have a position on the end user’s browser which requires a high level of customer trust. 

To ensure its service is delivered securely and that trust is maintained, the company has devoted significant resources to developing a robust Product Security Program. 

On today’s episode of the Future of Application Security, Harshil speaks with FullStory’s VP of Product Security and Compliance, Mark Stanislav to learn more about how the company has approached building and scaling its Product Security Program. 

Topics Discussed: 

• How Mark defines Product Security.
• Why FullStory runs maturity models every quarter. 
• How to use maturity models to demonstrate your Product Security Programs progress and justify further investment. 
• Why shifting-left is critical for all teams looking to scale their Product Security Program.  
• How FullStory built a culture of engineers who love security.  
• What most get wrong about vulnerability and risk management.
• Why Product Security teams need to own the triaging and prioritization.