Cloud-Native development with containers and serverless functions are being deployed at an increasing pace. This shift to cloud-native development puts more responsibility on developers to secure their applications and development toolchain. In this session, we will discuss how, where and when to apply a security-centric approach to application development. We will cover the security best practices followed within Oracle Cloud Infrastructure (OCI) as a case-study.