EP 49 — Semgrep’s Colleen Dai on Building Security Strategies and Relationships with Other Teams
Future of Application Security2 Marras 2023

EP 49 — Semgrep’s Colleen Dai on Building Security Strategies and Relationships with Other Teams

In this special episode of the Future of Application Security, recorded at the Developers & Security are Friends Day, Eric speaks with Colleen Dai, Senior Security Researcher at Semgrep, an open source static analysis tool. They discuss strategies security teams can take to reduce false positives, use secure defaults to eliminate bug classes, and reduce complexity in security decision-making. They also talk about ways to build the relationships between security, developers, and engineers, which includes aligning on goals, communication, and recognition.

Topics discussed:

  • Colleen's background and what her security research role at Semgrep entails.
  • How to use secure defaults to eliminate bug classes and reduce the complexity in security decisions.
  • How to reduce false positives by writing rules and checks, especially ones that are customized to your organization.
  • How to better align the goals of security and developers by focusing on creating good software — and good software is secure software.
  • How to build relationships with engineers through communication and recognition, not just talking through Jira tickets.
  • Why security and developers still struggle with cross-site scripting and how it can be fixed.

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(60)

EP 60 - Appian’s Abdullah Munawar on Enhancing Product Security Amid Evolving Development Trends

EP 60 - Appian’s Abdullah Munawar on Enhancing Product Security Amid Evolving Development Trends

In this episode of the Future of Application Security podcast, Harshil speaks with Abdullah Munawar, Director of Product Security at Appian. Abdullah shares valuable insights into his journey from sec...

22 Touko 202421min

EP 59 - Nat Mokry on Advancing Application Security in the Gaming Industry

EP 59 - Nat Mokry on Advancing Application Security in the Gaming Industry

In our latest episode of the Future of Application Security podcast, Nat Mokry, VP of Application & Product Security at Xbox (formerly of Activision Blizzard at the time of recording), shares valuable...

24 Huhti 202426min

EP 58 — Asana's Felix Matenaar on Building Resilient Security Practices for the Future

EP 58 — Asana's Felix Matenaar on Building Resilient Security Practices for the Future

In this episode of the Future of Application Security podcast, Harshil interviews Felix Matenaar, Head of Product Security at Asana. Felix shares insights into his journey from Germany to Silicon Vall...

10 Huhti 202432min

EP 57 — Clari's Steve Lukose on Using SLAs as Benchmarks for Businesses

EP 57 — Clari's Steve Lukose on Using SLAs as Benchmarks for Businesses

In this episode of the Future of Application Security, Harshil speaks with Steve Lukose, Vice President of Security at Clari, about how security is becoming a business enabler rather than just an orga...

27 Maalis 202427min

EP 56 — Aruneesh Salhotra on Why Security is Everyone’s Job

EP 56 — Aruneesh Salhotra on Why Security is Everyone’s Job

In this episode of the Future of Application Security, Harshil speaks with Aruneesh Salhotra, CEO and Fractional CISO, SNM Consulting Inc. They discuss the unique challenges and opportunities of appli...

28 Helmi 202424min

EP 55 — BlackBerry's Christine Gadsby on What's Driving Software Supplier Transparency and Accountability

EP 55 — BlackBerry's Christine Gadsby on What's Driving Software Supplier Transparency and Accountability

In this episode of the Future of Application Security, Harshil speaks with Christine Gadsby, VP, Product Security at BlackBerry, a software company specializing in cybersecurity. They discuss the new ...

14 Helmi 202426min

EP 54 — LPL Financial's Chad Girouard on Improving Application Security Through Better Tools and Relationships

EP 54 — LPL Financial's Chad Girouard on Improving Application Security Through Better Tools and Relationships

In this episode of the Future of Application Security, Harshil speaks with Chad Girouard, AVP Application Security at LPL Financial, a provider of investment and business solutions. They discuss how s...

31 Tammi 202423min

EP 53 — ReversingLabs's Dave Ferguson on Securing Your Software Supply Chains

EP 53 — ReversingLabs's Dave Ferguson on Securing Your Software Supply Chains

In this episode of the Future of Application Security, Harshil speaks with Dave Ferguson, Director of Technical Product Management, Software Supply Chain Security at ReversingLabs, which offers softwa...

17 Tammi 202424min

Suosittua kategoriassa Liike-elämä ja talous

sijotuskasti
rss-rahapodi
mimmit-sijoittaa
psykopodiaa-podcast
rss-oivalluksia-rahasta-elamasta
leadcast
asuntoasiaa-paivakirjat
rss-set-for-life-sijoita-ja-vaurastu
rss-ainin-sekatoimisto
rss-viisas-raha-podi
ostan-asuntoja-podcast
oppimisen-psykologia
hyva-paha-johtaminen
vapauta-supervoimasi-podcast
rss-rahamania
rss-pariisilaiset
rss-kaupan-tila
rss-kohti-unelmia
rss-startup-ministerio
rss-bisneksen-pehmea-puoli