ASW #143
Sponsored By
Visit https://securityweekly.com/PrismaCloud for more information!
Modern appsec demonstrates the importance of a cloud native strategy for enterprise security and how much that strategy must integrate with DevOps tools and workflows. Security solutions need to come from a cohesive platform that addresses the problems DevOps teams face in how they’re building apps today.
This segment is sponsored by Prisma Cloud/ Palo Alto Networks.
Visit https://securityweekly.com/PrismaCloud to learn more about them! Visit https://www.securityweekly.com/asw for all the latest episodes!
Cloud Native Security Platforms
Guests
|
|
John Morello – VP of Product at Palo Alto Networks
John Morello is the VP of Product at Palo Alto Networks and the former Chief Technology Officer at Twistlock. Prior to that John was a CISO at a Fortune 500 global chemical company. Before that he spent 14 years at Microsoft, in both Microsoft Consulting Services and product teams. He ran feature teams that shipped security technologies in Windows, Azure, and Office 365 and was the lead consultant on several security projects at the White House. John lives in Louisiana with his wife and two young sons. A passionate fisherman and scuba diver, he’s also a long time board member of the Coalition to Restore Coastal Louisiana. |
Hosts
|
|
Adrian Sanabria – Senior Research Engineer at CyberRisk Alliance @sawaba
Adrian is an outspoken researcher that doesn’t shy away from uncomfortable truths. He loves to write about the security industry, tell stories, and still sees the glass as half full. |
|
|
Mike Shema – Product Security Lead at Square @Codexatron
Mike Shema is the Product Security Lead of Square |
Announcements
-
Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!
-
If you missed Security Weekly Unlocked, you can now access all of the content on-demand, whether you registered before the live event or not, by visiting https://securityweekly.com/unlocked and clicking either the button to register or the button to login!
Audio
Software safety to mitigate the impact of unauthenticated RCEs, exploding regex patterns, web and browser security in the face of Spectre side-channels, signing software artifacts, 8 roles for today’s security teams. Visit https://www.securityweekly.com/asw for all the latest episodes!
Unauth’d RCE, “Regexploits”, Post-Spectre Web, & SigStore Signing
Hosts
|
|
Adrian Sanabria – Senior Research Engineer at CyberRisk Alliance @sawaba
Adrian is an outspoken researcher that doesn’t shy away from uncomfortable truths. He loves to write about the security industry, tell stories, and still sees the glass as half full. |
|
|
John Kinsella – Chief Architect at Accurics @johnlkinsella
John Kinsella is the Chief Architect for Accurics |
|
|
Mike Shema – Product Security Lead at Square @Codexatron
Mike Shema is the Product Security Lead of Square |
Announcements
-
Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
-
Our next live webcast will be on March 18th at 11am ET where you will learn how to Prepare Linux Hosts for Unexpected Threats! Visit https://securityweekly.com/webcasts to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at https://securityweekly.com/ondemand
Audio