Paul's Security Weekly Subscribe

Application security, Compliance Management

Avoiding the Silo: Bridging the Divide Between Security + Dev Teams – Brian Joe – PSW #699

June 17, 2021

Too often, developers and security teams have a siloed relationship. That separation can lead to inefficiencies and gaps in security across software development, ultimately leading to anything from bad user experiences to hits to the bottom line. How can teams bridge that gap, and evolve from gatekeepers of their own projects, to partners working in harmony toward a shared goal? In this podcast, Brian Joe will focus on the most overlooked factors in evaluating an organization’s InfoSec posture and what development and security teams can do to foster a mutually beneficial partnership and transition from a traditional security team model to a more collaborative one. In doing so, he’ll highlight the most common pitfalls of a siloed approach — and what companies can do to avoid them.

This segment is sponsored by Fastly.

Visit https://securityweekly.com/fastly to learn more about them!

Sponsored By

Fastly

Full episode and show notes

Announcements

Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Security Weekly is ecstatic to announce that Security Weekly Unlocked will be held IN PERSON this December 5-8 at the Hilton Lake Buena Vista! Call for presentations & early registration for Security Weekly listeners is open now! Visit securityweekly.com/unlocked to submit your presentation & register for the early registration price before it expires!

Guest

Brian Joe

Director of Security Product Management at Fastly

Brian Joe is the Director of Security Product Management at Fastly, where he runs the Security Product team and manages Fastly’s Security Product Portfolio. Previously, Brian led the Product and Growth functions at Signal Sciences (acquired by Fastly), and has had Product, Partnership, and Operations leadership roles at Edgecast Networks (acquired by Verizon), and Verizon Communications with over 16 years of experience in Security, Networking, Cloud, and SaaS.

Hosts

Adrian Sanabria

Principal Researcher at The Defenders Initiative

https://adriansanabria.com

Professor at Roger Williams University

https://securedigitallife.com/

Sr. InfoSec Consultant at Online Business Sytems

https://www.obsglobal.com/

Product Security Research and Analysis Director at Finite State

@haxorthematrix

https://www.finitestate.io/, https://breakstuffforfun.com/

Related

Application security

XZ & Open Source, PuTTY’s Private Keys, LeakyCLI, LLMs Writing Exploits – ASW #282

April 22, 2024

CISA chimes in on the XZ Utils backdoor, PuTTY's private keys and maintaining a secure design, LeakyCLI and maintaining secure secrets in CSPs, LLMs and exploit generation, and more!

Application security

Sustainable Funding of Open Source Tools – Simon Bennetts, Mark Curphey – ASW #282

April 22, 2024

How can open source projects find a funding model that works for them? What are the implications with different sources of funding? Simon Bennetts talks about his stewardship of Zed Attack Proxy and its journey from OWASP to OpenSSF to an Open Source Fellowship with Crash Override. Mark Curphy adds how his experience with OWASP and the appsec commu...

Crazy money and crazy outcomes – cybersecurity acquisitions in all shapes and sizes – ESW #358

April 18, 2024

This week, Adrian and Tyler discuss some crazy rumors - is it really possible that a cloud security startup valued at over $8 billion in November 2021 just got bought for $200 million??? Some healthy funding for Cyera and Cohesity ($300m and $150m, respectively) Onum, Alethea, Sprinto, Andesite AI, StrikeReady, YL-Backed Miggo, Nymiz, Salvador Te...