Application Security AppSec 101 - Tanya Janca
Cloud Security Podcast2 Elo 2020

Application Security AppSec 101 - Tanya Janca

In this episode of the Virtual Coffee with Ashish edition, we spoke with Tanya Janca, Founder, SheHacksPurple & WeHackPurple.

Tanya & Ashish spoke about

  • Who is Tanya Janca? :)
  • What was your path into CyberSecurity or your current role?
  • What has professional life been after leaving Microsoft?
  • What does Cloud Security mean for you?
  • What is Application Security or AppSec?
  • Tanya Janca’s Book - “Alice and Bob learn Application Security”
  • How can someone start in Application Security, specially if they are trying to move laterally?
  • What is Static Code Analysis?
  • What is DevSecOps
  • What is CI/CD Pipeline?
  • Loss of AppSec knowledge when people move on? How do you find the motivation to continue?
  • What is an AppSec Program and how can one make it successful?
  • What does a Mature AppSec Program look like?
  • Are there any tools used for Threat Modelling or is it conducted separately?
  • What’s the most difficult piece of AppSec discipline to explain to others again and again?
  • How do I get buy in from management?
  • How do you do Threat Modelling in CI/CD Pipeline or automate it?
  • What soft skills do you need to be an Application Security person?
  • How do you merge AppSec risk in the infrastructure risk to get a wholistic view?

ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv

Twitter - @kaizenteq @hashishrajan

If you want to watch videos of this and previous episodes:

- Twitch Channel: https://lnkd.in/gxhFrqw

- Youtube Channel: https://lnkd.in/gUHqSai

Jaksot(345)

HOW TO SECURE AWS CLOUD ENVIRONMENT FOR HEALTHCARE

HOW TO SECURE AWS CLOUD ENVIRONMENT FOR HEALTHCARE

In this episode of the Virtual Coffee with Ashish edition, we spoke with Kyler Middleton (Kyler's Linkedin) Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast....

20 Heinä 202255min

Zero Trust and the Triple Paradox

Zero Trust and the Triple Paradox

Zero Trust is top of mind but is it achievable? In this "What to LookOut for in 2022" series - we interviewed experts at RSA and BSidesSF about what Zero Trust is important today and the paradoxes in ...

9 Heinä 202221min

Building AWS Security Guardrails

Building AWS Security Guardrails

In this episode of the Virtual Coffee with Ashish edition, we spoke with Kinnaird McQuade (Kinnaird's Twitter) Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodca...

4 Heinä 202244min

Fix the Broken Digital Supply Chain

Fix the Broken Digital Supply Chain

The Digital Supply Chain is broken and getting challenging to fix. In this "What to LookOut for in 2022" series - we interviewed experts at RSA and BSidesSF on the Broken Digital Supply Chain and ways...

3 Heinä 202215min

3 THINGS THAT BROKE THE DIGITAL SUPPLY CHAIN

3 THINGS THAT BROKE THE DIGITAL SUPPLY CHAIN

The Digital Supply Chain is broken and getting challenging to fix. In this "What to LookOut for in 2022" series - we interviewed experts at RSA and BSidesSF on the Broken Digital Supply Chain and why ...

26 Kesä 202216min

Digital Transformation - ARE WE THERE YET!

Digital Transformation - ARE WE THERE YET!

In this episode of the Virtual Coffee with Ashish edition, we spoke with Heather Ceylan (@heatherceylon) & Ariel Chavan (@ariel-c-ab445a50) from Zoom. Watch the video for this episode on You Tube - Di...

20 Kesä 202214min

CISO Perspective: Sean Catlett, CISO of Slack

CISO Perspective: Sean Catlett, CISO of Slack

In this episode of the Virtual Coffee with Ashish edition, we spoke with Sean Catlett (Sean's Linkedin) Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv H...

14 Kesä 202233min

CAASM - CyberSecurity Asset Management for the Modern Security Stack

CAASM - CyberSecurity Asset Management for the Modern Security Stack

In this episode of the Virtual Coffee with Ashish edition, we spoke with Akash Ganapathi (Akash's Linkedin) Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast....

4 Kesä 202234min