Building security culture in dev teams - any recipes for success?

Hi all,

Working as IT security dude for a former startup, now a scale up company. Our developers (about 30 of them) have pretty low security knowledge and awareness for integrating secure practices into their development.

I want to change their behaviour, but lack developer experience myself, coming from operations side. I'm looking for your best experiences for boosting security in development teams.

Sent out a short "OWASP Top 10" course and soon another coming about "Security and Privacy by …

awareness building building security change coming culture cybersecurity dev developer developer experience developers development dev teams experience it security knowledge low practices scale scale up security security culture startup teams working