Building an Engineering Security Culture - Failure stories included - Edwin Kwan, Tyro Payments
Cloud Security Podcast21 Kesä 2020

Building an Engineering Security Culture - Failure stories included - Edwin Kwan, Tyro Payments

In this episode of the Virtual Coffee with Ashish edition, we spoke with Edwin Kwan, Head of Application and Software Security at Tyro payments.

Edwin & Ashish spoke about

  • What was Edwin’s path into CyberSecurity?
  • What is AppSec for people who don't know?
  • What is the difference between Application Security and Software Security?
  • Is being a developer an advantage going into Application Security?
  • Is AppSec any different between cloud compared so an application deployed on-premise?
  • Enabling an engineering security culture - What does this mean for those who don't know?
  • Engineering Security Culture - How has it evolved to now most of the code developed is using open source libraries
  • Enabling an engineering security culture - Where can one start and what should be avoided?
  • What is DevSecOps for you?
  • Edwin’s book - Failure of DevSecOps

ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv

Twitter - @kaizenteq @hashishrajan

If you want to watch the previous episodes:

- Twitch Channel: https://lnkd.in/gxhFrqw

- Youtube Channel: https://lnkd.in/gUHqSai

Jaksot(343)

Cloud Incident Response in Microsoft Azure

Cloud Incident Response in Microsoft Azure

In this episode, we dive deep into Azure security, incident response, and the evolving cloud threat landscape with Katie Knowles, Security Researcher and former Azure Incident Responder. We spoke abou...

20 Helmi 202554min

AWS Multi-Account Security: What Netflix Learned

AWS Multi-Account Security: What Netflix Learned

🚀 How do you secure thousands of AWS accounts without slowing down developers? Netflix’s cloud security experts Patrick Sanders & Joseph Kjar join us to break down their identity-first security model...

13 Helmi 202550min

Cloud Security Detection & Response Strategies That Actually Work

Cloud Security Detection & Response Strategies That Actually Work

We spoke to Will Bengtson (VP of Security Operations at HashiCorp) bout the realities of cloud incident response and detection. From root credentials to event-based threats, this conversation dives de...

4 Helmi 202557min

CISO Challenges Across Industries

CISO Challenges Across Industries

In this episode, we sit down with Sunil Rane, an experienced cybersecurity leader with over 20 years in cybersecurity across industries like healthcare, education, media, and consulting. Sunil shares ...

28 Tammi 202531min

Why Solving the Data Problem is Key to Cloud Security?

Why Solving the Data Problem is Key to Cloud Security?

In this episode we’re joined by Francis Odum, founder and lead research analyst at Software Analyst Cyber Research. Drawing from his extensive research and conversations with CISOs, security operators...

24 Tammi 202550min

The economics of cybersecurity and trends

The economics of cybersecurity and trends

In this episode, host Ashish Rajan spoke to Mike Privette, founder of Return on Security, to explore the landscape of cybersecurity as we look toward 2025. Mike shared his unique insights on the econo...

21 Tammi 202526min

The Truth About CNAPP and Kubernetes Security

The Truth About CNAPP and Kubernetes Security

In this episode of the Cloud Security Podcast, host Ashish Rajan speaks to James Berthoty, founder of Latio.Tech and an engineer-driven analyst, for a discussion on cloud security tools. In this episo...

14 Tammi 202540min

Cybersecurity Isn’t Crowded: Security Engineering and the 5,000 Vendor Problem

Cybersecurity Isn’t Crowded: Security Engineering and the 5,000 Vendor Problem

In this episode our host Ashish Rajan sat down with Ross Haleliuk, author of Cybersecurity for Builders and creator of the Venture in Security blog, to explore the current state and future of the cybe...

10 Tammi 20251h 10min