DevSecOps in Agile Organisations: A SAFe Based Approach

Swisscom is consequently following a DevSecOps approach to become more dynamic, faster, better but especially also more secure. To better integrate security into our daily work and make it a first-class citizen, we have created a new role & community model according to SAFe and implemented a security by design approach. We will show up the different aspects of our organisation and how we train our people, as well as various approaches – such as threat modelling, security reporting and risk management – which are impacting our security feature backlog and making us more secure in the end.


Patrick Rapp

Patrick Rapp Patrick Rapp Firma

Patrick holds a BSc in Information Technology. He has more than 20 years of experience in leading large and complex IT Projects in the Telco domain. He is working as a Solution Security Architect and Data Governance Manager at Swisscom (Switzerland) Ltd. He is a pioneer in implementing the DevSecOps approach at Swisscom.

Collin Geisser

Collin Geisser Collin Geisser Firma

Collin is completing his Master of Advanced Studies in Software Engineering this year. He has more than 15 years of experience in the telecommunications sector as a software developer, solution designer, scrum master and product owner. In his current position, he works as a FullStack Developer and has the role of System Security Architect.

Outside of work, Collin enjoys spending time with his young family or can be found on various multiplayer servers.