DevOps, Threat modeling

Security By Design – ASW #135

January 4, 2021

A premise of adding security to DevOps is we can “shift left” AppSec responsibilities, one of which is building apps so they’re secure by design. Yet what resources does the AppSec community provide for this approach to design? We take a look at the OWASP Top 10, Web Security Testing Guide, and Application Security Verification Standard to find a way forward for DevOps teams. Visit for all the latest episodes!

Full Episode Show Notes

Security By Design



[caption id="attachment_210" align="alignleft" width="120"]John Kinsella John Kinsella - Chief Architect[/caption] [caption id="attachment_210" align="alignleft" width="120"]Mike Shema Mike Shema - Product Security Lead[/caption]


  • Do you want to stay in the loop on all things Security Weekly? Visit to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!

  • We have officially wrapped up all of the recordings for our 2020 webcasts & technical trainings! Stay tuned as we build out our schedule for next year! Visit to view all of our 2020 webcasts & trainings!

[audio src=""]
prestitial ad