DevOps, Training, Threat modeling, Security research

ASW #141

0



In looking at how to do application security right we talk about understanding the difference between defining types of security testing and the goals that security testing should be aiming for. Plus, we highlight how doing security right also means shifting left in terms of addressing security issues in the design phase. And throughout all this is the importance of being able to communicate security principles and how your design and testing reduces risk.

Register for the DevSecOps eSummit for which Ted will be a panelist:

https://onlinexperiences.com/Launch/QReg.htm?ShowUUID=5673DA7C-B8C2-4A3E-B675-C6BBF45DC04F Visit https://www.securityweekly.com/asw for all the latest episodes!

Full Episode Show Notes

Hackable; How to do Application Security Right

Guests

Ted Harrington

Ted Harrington –

Executive Partner at Independent Security Evaluators

Hosts

John Kinsella

John Kinsella –

Chief Architect at Accurics

Matt Alderman

Matt Alderman –

Executive Director at CyberRisk Alliance

Mike Shema

Mike Shema –

Product Security Lead at Square

Announcements

  • Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!

  • If you missed Security Weekly Unlocked, you can now access all of the content on-demand, whether you registered before the live event or not, by visiting https://securityweekly.com/unlocked and clicking either the button to register or the button to login!

Audio



This week on the Application Security News, Implementation pitfalls in parsing JSON, finding all forms of a flaw with CodeQL, more educational resources for hacking apps, engineering and product management practices for DevOps, & more! Visit https://www.securityweekly.com/asw for all the latest episodes!

Full Episode Show Notes

JSON, OpenSSL, Educational Resources, & Flaws in CodeQL

Hosts

John Kinsella

John Kinsella –

Chief Architect at Accurics

Matt Alderman

Matt Alderman –

Executive Director at CyberRisk Alliance

Mike Shema

Mike Shema –

Product Security Lead at Square

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

  • Our next live webcast will be on March 18th at 11am ET where you will learn how to Prepare Linux Hosts for Unexpected Threats! Visit https://securityweekly.com/webcasts to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at https://securityweekly.com/ondemand

Audio

0
prestitial ad