In episode 42 of The Secure Developer, Guy speaks with Kate Whalen, a security engineer at The Guardian, to discuss news media security and advocating security across many teams within a large organization. The post Ep. #42, News Media Security with Kate Whalen of The Guardian appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 41 of The Secure Developer, Guy talks with Sara Dunnack, a security engineer at InVision. They discuss methods for improving communication between DevSecOps, AppSec, and Engineering teams within an organization. The post Ep. #41, Optimizing Team Communication with Sara Dunnack of InVision appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 40 of The Secure Developer, Guy speaks with Brian Sodano, Director of Engineering at Liberty Mutual Insurance. They unpack what happens to security when a company goes through a large-scale digital transformation, and ruminate on the future of the security industry. The post Ep. #40, Large-Scale Digital Transformation with Brian Sodano of Liberty Mutual appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 39 of The Secure Developer, Guy is joined by Mohan Yelnadu, Head of AppSec at Prudential. They discuss Mohan’s journey from pen tester to DevSecOps consultant, security threat modeling, and his 6 principles of continuous security. The post Ep. #39, Build, Break, and Defend with Mohan Yelnadu of Prudential appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 38 of The Secure Developer, Guy speaks with Andy Ellis, CSO of Akamai. They discuss streamlining customer assurance, the role of an incidents coordinator, and the value of transparency between a security company and their associates. The post Ep. #38, You Own It, You Secure It with Andy Ellis of Akamai appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 37 of The Secure Developer, Guy speaks with James Kaplan of McKinsey & Co. James describes his journey into the telecommunications industry, and how many longstanding companies must reevaluate security practices when going through a digital transformation. The post Ep. #37, Security Transformation with James Kaplan of McKinsey & Company appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 36 of The Secure Developer, Guy is joined by Peter Oehlert of Smartsheet. They discuss holistic security approaches, understanding various categories of risk, and how the different teams in a large organization can work together to improve security. The post Ep. #36, Holistic Security with Peter Oehlert of Smartsheet appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 35 of The Secure Developer, Guy is joined by Robert C. Seacord of NCC Group, who champions the continued practice of coding security in C and C++, and offers practical advantages to using various programming languages in the Agile era. The post Ep. #35, Secure Coding in C/C++ with Robert C. Seacord of NCC Group appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 34 of The Secure Developer, Guy speaks with Siren Hofvander of Cybercom about her enlightening journey from the digital medical space to running a secure developer consulting team, as well as her empathy-driven ethos in the one-size-fits-all security world. The post Ep. #34, Positive Security with Siren Hofvander of Cybercom appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 33 of The Secure Developer, Guy is joined by Leif Dreizler and Eric Ellett of Segment. They discuss motivating security teams, the importance of investing time in your business relationships, and the longterm rewards of proper security training. The post Ep. #33, Engineering Teams with Leif Dreizler and Eric Ellett of Segment appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 32 of The Secure Developer, Duncan Godfrey from Auth0 speaks with Guy about his journey into security. Duncan also shares great insights into staying secure and compliant in a fast moving environment. The post Ep. #32, Security and Compliance with Duncan Godfrey of Auth0 appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 31 of The Secure Developer, Guy is joined by Tanya Janca, Cloud Advocate at Microsoft. Tanya shares insights, from her early days leading software teams for the Canadian government, to evangelizing software security at Microsoft. The post Ep. #31, Evangelizing Security with Tanya Janca of Microsoft appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 30 of The Secure Developer, Guy speaks with Justin Somaini, a security industry leader and Founder of Somaini LLC. They discuss how security theory has changed over the past 25 years, and how AppSec can be improved by educating the developer community. The post Ep. #30, Improving Security Culture with Justin Somaini appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 29 of The Secure Developer, Guy sits down with Liran Tal, Developer Advocate at Snyk, to discuss the state of open source, Docker security, and developer infrastructure. The post Ep. #29, The State of Open Source & Docker Security appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 28 of The Secure Developer, Guy is joined by Jason Chan of Netflix to discuss simplifying the security process for software developers, as well as some of the open source projects Netflix has shared with the community. The post Ep. #28, Developer Empathy with Jason Chan of Netflix appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 27 of The Secure Developer, Guy is joined by Jeff McAffer, director of Microsoft’s Open Source Programs Office, who shares his insights on how to keep open source projects sustainable and secure for the whole community. The post Ep. #27, Open Source Security with Jeff McAffer of Microsoft appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 26 of The Secure Developer, Guy is joined by Jim Manico, founder of Manicode Security, to discuss insights from his long career as a security educator, and to explore the importance of developer training in application security. The post Ep. #26, Security Education with Jim Manico appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 25 of The Secure Developer, Guy meets with Simon Bennett, VP Product at Bitnami, to discuss golden images, image layering, and how Bitnami helps accelerate application delivery across multiple clouds. The post Ep. #25, Golden Images with Simon Bennett of Bitnami appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 24 of The Secure Developer, Guy is joined by Omer Levi Hevroni, DevSecOps Engineer at Soluto, to discuss application security, OWASP, security ‘mavens,’ and more. The post Ep. #24, Application Security with Omer Levi Hevroni appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 23 of The Secure Developer, Guy speaks with Zach Powers, CISO of One Medical, to discuss the evolution of security at One Medical, what he looks for when hiring for his team, and why automation is a must. The post Ep. #23, Automation with One Medical’s Zach Powers appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 22 of The Secure Developer, Guy meets with Stina Ehrensvärd, founder and CEO of Yubico, to explore how hardware solutions like YubiKey can be an effective approach to authentication and security. The post Ep. #22, Authentication with Yubico’s Stina Ehrensvärd appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 21 of The Secure Developer, Guy meets with Julie Tsai , Cybersecurity Leader and DevSecOps Practitioner, to discuss ways to manage secure systems and bridge the gap between security and DevOps. The post Ep. #21, Managing Security with Cybersecurity Leader and DevSecOps Practitioner Julie Tsai appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 20 of The Secure Developer, Guy speaks to Dan Cornell , CTO of Denim Group , the developer security firm behind ThreadFix, a vulnerability resolution platform. The post Ep. #20, Using ThreadFix with Dan Cornell of Denim Group appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 19 of The Secure Developer, Guy meets with Allison Miller to discuss the ways technology and security have intersected throughout her career. The post Ep. #19, Measuring Security with Allison Miller appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 18 of The Secure Developer, Guy meets with Marten Mickos, CEO of HackerOne, a platform for vulnerability coordination and a bug bounty program that helps developers test and build more secure systems. The post Ep. #18, Collaborative Security with HackerOne’s Marten Mickos appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 17 of The Secure Developer, Guy meets up with Adrian Colyer, Venture Partner at Accel and author of The Morning Paper, a daily recap of academic articles in computer science. The pair investigates how researchers are discovering new side-channel attacks and vulnerabilities that look, at first glance, like they’re out of a science fiction or spy novel. The post Ep. #17, Security Research with The Morning Paper’s Adrian Colyer appeared first on Heavybit . Follow Us Our Website Our Linke...
In episode 16 of The Secure Developer, Guy is joined by Masha Sedova, co-founder of Elevate Security, to discuss how training for employees (even developers) can help companies stay one step ahead of the pack when it comes to preventing a breach. The post Ep. #16, Security Training with Elevate’s Masha Sedova appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In episode 15 of The Secure Developer, Guy is joined by James Governor, Analyst and Co-founder of RedMonk, a developer-focused industry analyst firm. The pair discusses multiple ways that companies can be incentivized, and how they can incentivize others, to invest in and improve security. The post Ep. #15, Enterprise Security with RedMonk’s James Governor appeared first on Heavybit . Follow Us Our Website Our LinkedIn...
In the latest episode of The Secure Developer, Guy is joined by Geoff Belknap, Chief Security Officer at Slack. Geoff discusses what drew him into security and reveals why it’s critical for security teams to be recognized as a full-fledged member of engineering. He explains why it makes sense for companies to develop a track record of transparency and actively encourage community participation through bug bounty programs. Geoff also concludes that companies should encourage basic security hygien...
In the latest episode of The Secure Developer, Guy is joined by Shaun Gordon, Chief Security Officer at New Relic. Shaun tells us how he got into a career in security and explains how the role of security has evolved at New Relic. He reveals their philosophy of adapting security processes to fit the way developers do their job and emphasizes the importance of exception alerts, scorecards, and automation to support a rapidly scaling organization. The post Ep. #13, How New Relic Does Security appe...
