We have all run into situations or systems where decisions were made that caused great pain further down the line.

"We will deal with performance once we launch"
"Best practices are just suggestions from people who don't know our industry"
"We don't have time for 'real security', sysadmin will do for now"

I see these scenarios over and over again and believe that sharing the pain will allow people to identify and (hopefully) stop such arguments from taking hold.

This session will go over a few of the recent "interesting" scenarios we've encountered and how we approached stopping them being implemented, or how we fixed the problem after the fact.

You will leave with a set of war stories that seem familiar, but also with some ammunition and strategies to avoid those common pitfalls in the future.