show episodes
 
A show about getting your best ideas into the world and seeing what happens. We talk about code, ops, infrastructure, and the people that make it happen. Gerhard Lazu and friends explore all things DevOps, infra, and running apps in production. Whether you’re cloud native, Kubernetes curious, a pro SRE, or just operating a VPS… you’ll love coming along for the ride. Ship It honors the makers, the shippers, and the visionaries that see it through. Some people search for ShipIt or ShipItFM and ...
 
Chris and Robert deconstruct world-class Application Security experts, digging deep to find the tools, tactics, projects, and tricks that make them successful. Each episode begins with the guest's security origin story or how they got started in Application Security. Topics range from DevOps+security, secure coding, OWASP, threat modeling, security culture, and anything else they can think of regarding application security. Chris Romeo (@edgeroute) is the CEO of Security Journey, and Robert ...
 
Resilient Cyber brings listeners discussions from a variety of Cybersecurity and Information Technology (IT) Subject Matter Experts (SME) across the Public and Private domains from a variety of industries. As we watch the increased digitalization of our society, striving for a secure and resilient ecosystem is paramount.
 
Contrast Security provides the industry’s only DevOps-Native AppSec Platform using instrumentation to continuously analyze and protect software from within the application. This enables businesses to see more of the risks in their software and less development delays and AppSec complexity. The Contrast platform integrates seamlessly into development pipelines, enabling easier security bug and vulnerability fixes that significantly speed release cycles. The Contrast Inside AppSec Podcast feat ...
 
Simply Cyber is an information security YouTube channel designed to help individuals go further, faster in the information security field. I’m Gerald Auger, a full time cyber security professional with a passion for the field. The field is collaborative in nature, and I would like to help others successfully drive their career. This podcast is audio extracted from SimplyCyber interviews and made available. Check out SimplyCyber.io or SimplyCyber on YouTube for more information.
 
Welcome to the Cyber Security & Cloud Podcast #CSCP where we will explore the dark secret of cloud and cyber. The podcast focuses on people and their stories and explores the human element that brings so many people together Some episode will be for the well-seasoned cybersecurity veteran but most are about stories of infosec people and how they reach where they are now. The focus and various stream of the podcast is Cybersecurity, Cloud Security, Application Security Social Engineering, and ...
 
DevOps.com for the best chats on DevOps, Cyber, Cloud Native & Digital Transformation. DevOps Chats is brought you by MediaOps https://mediaops.io, the people behind DevOps.com, Security Boulevard, Container Journal, Digital Anarchist and more. Featuring CEO, editor in chief, Alan Shimel, talking with leading lights of the industry
 
A
Application Security Weekly (Video)

1
Application Security Weekly (Video)

Mike Shema, John Kinsella, Matt Alderman - Security Weekly

Unsubscribe
Unsubscribe
Weekly+
 
Application Security Weekly decrypts development for the Security Professional - exploring how to inject security into their organization’s Software Development Lifecycle (SDLC) in a fluid and transparent way; Learn the tools, techniques, and processes necessary to move at the speed of DevOps (even if you aren’t a DevOps shop yet). The target audience for Application Security Weekly spans the gamut of Security Engineers and Practitioners that need to level-up their skills in the Application ...
 
Each webinar features an SEI researcher discussing their research on software and cybersecurity problems of considerable complexity. The webinar series is a way for the SEI to accomplish its core purpose of improving the state-of-the-art in software engineering and cybersecurity and transitioning this work to the community. The SEI is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University. The SEI Webinar Seri ...
 
Are you a cyber defender looking to keep up on the newest tools, technology, and security concepts? Then BLUEPRINT is the podcast for you! Tune in to hear the latest in cyber defense and security operations from blue team leaders and experts. With a focus on learning, BLUEPRINT includes interviews with today’s top security practitioners defending the world’s most respected brands, and in-depth explanations on the newest technologies, protocols, and defensive tools. BLUEPRINT, is a podcast ho ...
 
T
The DroidDevCast

1
The DroidDevCast

Rin Oliver, Jasmine Henry, Chiranjeet Deka

Unsubscribe
Unsubscribe
Weekly
 
Welcome to the DroidDevCast, a podcast brought to you by the team at Esper, bringing you the latest news, thoughtful discussion, and insights into all things Android, Android DevOps, and open source software development. Our host, Esper Platform Evangelist Rin Oliver is joined weekly on Fridays by a variety of guests whose backgrounds span software development, product design, UI/UX, engineering, marketing, and more. These are the stories of how today's software is built, produced, and deliv ...
 
Whether you want to be or not, you are now part of the security economy. Your personal and professional data has value; do you know who has it? Your data may even have a life of its own on the dark web; what does that mean? You are one of four billion people who use the internet globally. Every time you do so, you risk your personal and professional data being stolen. The internet was never built for privacy and security; those are add-ons. The world wide web wasn't used for commercial purpo ...
 
Loading …
show series
 
Chris - We know you are extremely passionate about DevSecOps in Government. What do you think some of the biggest impediments for widespread Government adoption of DevSecOps is? Nikki - I see you spoke recently about minimum viable continuous delivery - can you tell us a little bit about what that is and what it means? And what you think the possib…
 
Given your wide range of experience with AWS and cloud security - what would you say are some of the most common types of attacks for cloud platforms? What would you say are the top three skills someone should work on if they're interested in a career on a Red Team or as a penetration tester? Are there some really good resources or open-source tool…
 
WebAssembly-based wasmCloud is a Sandbox Project for the Cloud Native Computing Foundation (CNCF) and Cosmonic CEO Kevin Hoffman is convinced it's the next big thing in computing. He talks to Scott about why WebAssembly is so significant and considers it through a historical lens of decades of building distributed systems. Should you build your fun…
 
Get the Black Friday/Cyber Monday "Double Your Productivity by 5pm Today" Deal Coupon Code: "DEEP" for a GIANT discount Mani provides us with strategies and tactics to get Deep Work time and how to get our minds into that focused state for hours at a time. He has read hundreds of books that have taught him the secrets to getting more done by gettin…
 
Jillian, Jonathan, Will, and Chuck discuss where the line is between Development and DevOps and what the difference is. They also get into the value of each and when crossover is likely to occur. Panel Charles Max Wood Jillian Rowe Jonathan Hall Will Button Sponsors Top End Devs Coaching | Top End Devs Picks Charles- Traeger Grills® - The Original …
 
Zac Smith, managing director Equinix Metal, is sharing how Equinix Metal runs the best hardware and networking in the industry, why pairing magical software with the right hardware is the future, and what Open19 means for sustainability in the data centre. Think modular components that slot in (including CPUs), liquid cooling that converts heat int…
 
CSCP is bringing back season 1 in a newly remastered version. This is part two with Kevin Fielder, a CISO, NED, start-up and board advisor, researcher, and speaker based in the UK. Kevin is a CrossFit athlete who values a healthy work-life balance that allows him time for fitness and family. He answers questions about diversity in the workplace, re…
 
It’s officially National Absurdity Day! Although, this could pass as just another DBAle. In the (soya) meat of the episode, our hosts pass the time discussing the frankly absurd database development practices that are somehow still passable in 2021. While the news celebrates the PASS Data Community Summit, and the importance of passwords in data se…
 
Unedited live recording on YouTube Ep 106 Corrections =========== "Windows RT" isn't a thing anymore, and the Windows 10 on Arm (WoA) is getting better, with x64 emulation (MS version of Rosetta 2) in pre-beta AArch64 or ARM64 is the 64-bit extension of the ARM architecture Microsoft is indeed designing its own Arm chips for future Surface and serv…
 
Most Cyber Insurance companies belong to multiple Threat Intel services and Security rating companies for monitoring and analyzing their customers security posture and their cyber insurance rates. Threat Intel is very valuable for the Cyber insurers for monitoring their clients deep dark web and other areas of concerns as another data set in their …
 
Mismatches between the perspectives and practices of the roles involved in the development and fielding of ML systems—data scientists, software engineers, and operations personnel—can affect the ability of systems to achieve their intended missions. In this SEI Podcast, Grace Lewis, a principal researcher and lead for the Tactical and AI-Enabled Sy…
 
David Weston is Director of Enterprise and OS Security for Windows at Microsoft. Today he sits down with Scott to get some real answers about the hardware requirements of Windows 11. What's the role of the TPM, and what are the other significant requirements that were needed in silicon to make Windows 11 secure? https://www.youtube.com/watch?v=tg9Q…
 
The panel puts their heads together to talk about how to bring DevOps practices into a work situation based where they're not implemented. They discuss the various pro's and con's of specific practices and how to get people on board with adoption. Panel Charles Max Wood Jillian Rowe Jonathan Hall Will Button Sponsors Top End Devs Raygun | Click her…
 
This week Gerhard is chatting with Romano Roth, Head of DevOps at Zühlke, a company founded by Gerhard Zühlke in 1968. Nowadays they help companies all over the world build, ship and run anything from factory robots, to AI assistants in complex regulatory environments, and even medical devices that perform autonomous robotic surgery. When Romano is…
 
Chris - You have a book coming out titled The CISO Evolution - Business Knowledge for Cybersecurity Executives. How critical do you think it is for CISO's to understand the business, and how do they balance their technical skills with business acumen? Nikki - I see you've posted several videos on LinkedIn - my favorite so far is the "paralysis-by-a…
 
In the AppSec news: Disclosure decisions and CVE-2021-3064, technical details behind ChaosDB in Azure, fuzzing BusyBox, Prossimo and Rust, vulns in Nucleus RTOS, & HTML smuggling! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw174
 
Mobile applications have a unique attack surface. The tools and techniques being used to compromise these environments are constantly evolving. We'll talk about how to harden mobile apps against modern threats. This segment is sponsored by Guardsquare. Visit https://securityweekly.com/quardsquare to learn more about them! Visit https://www.security…
 
CSCP is bringing back season 1 in a newly remastered version. This is part 1 of the interview with Kevin. Kevin Fielder is a CISO, NED, start-up and board advisor, researcher, and speaker based in the UK. In part one of the interviews, Kevin discusses his approach to recurring and hiring new talent for junior cyber security roles, managing and lead…
 
Unedited live recording on YouTube (Ep 141) Topics Linting Q&A Super-Linter 101 Example GitHub Action Repo Dependabot for GHA Linter config files Customize Super-Linter Reusable Workflows Links Super-Linter GitHub Example Workflow in Bret's GitHub Editorconfig Reusable Workflows Workflow Templates Hacktoberfest from DigitalOcean ★ Support this podc…
 
Jason Zander, EVP of the Azure Team joins Scott Hanselman to celebrate the 8th anniversary of Azure Friday. In this special crossover episode with Hanselminutes, they reflect on Azure history and Jason's career at Microsoft during that timeframe. http://www.azurefriday.comBy Scott Hanselman
 
In this SEI Podcast, Mike Konrad, a principal researcher in the SEI's Software Solutions Division, talks with 2020 IEEE Computer Society SEI Watts Humphrey Software Quality Award winner Rajendra Prasad of Accenture about automation and how SEI-developed process improvement methods and tools provided the foundation for his leadership role.…
 
In this episode, Gerhard is joined by Cyrille Le Clerc, Product Manager Lead on Observability at Elastic, and Oleg Nenashev, Principal Engineer at CloudBees. It all started with Oleg’s tweet back in July, in which he was promoting Akihiro Kiuchi’s work on Jenkins monitoring with OpenTelemetry. This was done in the context of Google’s Summer of Code…
 
The panel jumps in and discusses the Minimum Viable Continuous Deployment from the manifesto on the web and discuss where they agree and disagree with the requirements listed there and clarify some of the ideas in the document. Panel Charles Max Wood Jillian Rowe Jonathan Hall Will Button Sponsors Dev Influencers Accelerator Level Up | Devchat.tv L…
 
Simon Bennetts is the OWASP Zed Attack Proxy (ZAP) Project Leader and a Distinguished Engineer at StackHawk, a company that uses ZAP to help users fix application security bugs before they hit production. He has talked about and demonstrated ZAP at conferences all over the world. Prior to making a move into security, he was a developer for 25 years…
 
This week in the AppSec News, Mike and John talk: Excel gains support for JavaScript data types and functions, arbitrary code execution in Linux kernel TIPC, more malware in npm packages, threat models and OTP/2FA bots, NIST Security Labels! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com…
 
In this segment, Mike and Dan McKinney from Cloudsmith will be discussing SBOM and what that looks like for your applications. Other topics include: cloud-native tooling for your software supply chain, the history of provenance, GPG Keys & signing commits, package consumption, understanding threat modeling, and knowing the roles and responsibilitie…
 
Colin Bell, Rob Cuddy and Kris Duer from HCL Software bring you another application security interview special. In this Episode the team discuss the recent 'Rug Pull' with a fake Squid Game Crypto Currency and they also talk to Philippe Humeau the founder of CrowdSec. Phillippe is a true Entrepreneur and CrowdSec is his latest startup founded in 20…
 
CSCP is bringing back season 1 in a newly remastered version. This is part 2 of the interview with Tanya Janca. In this episode, Tanya shares her passion for WoSec, her decision to leave Microsoft, giving back to the community, encouraging women to get involved in cyber security, and defines DevSecOps. Tanya Janca is an application security evangel…
 
Purple teaming has allowed an evolution from a combative point-in-time red team exercises and blue team responsive tuning to allow for collaborative, iterative process of cybersecurity defense hardening that can be tailored for an environment based on threat modeling.But how do you operationalize purple teaming effectively, what are the pitfalls, a…
 
Scott talks with Annyce Davis, Senior Engineering Director at Meetup, about how to advance in your engineering career while maintaining a hold on the technology, community, and processes that you got there. We'll learn why she feel like sharing what you know is one of the best ways to stay connected to the community! https://adavis.info/ Course: Pr…
 
Abhinav Dhasmana joins the adventure to discuss how he got Kafka to scale to handle thousands of messages. He explains how to scale Kafka up and how to allow applications to scale with the messaging architecture provided by Kafka. Panel Jillian Rowe Jonathan Hall Shimon Tolts Will Button Guest Abhinav Dhasmana Sponsors Dev Influencers Accelerator R…
 
In the second set of interviews from KubeCon North America 2021, Gerhard and Liz Rice talk about eBPF superpowers - Cilium + Hubble - and what’s it like to work with Duffie Cooley. Jared Watts shares the story behind Crossplane reaching incubating status, and Dan Mangum tells us what it was like to be at this KubeCon in person. Dan’s new COO role (…
 
Organic software sustainment organizations within the Department of Defense are expanding beyond their traditional purview of software maintenance into software engineering and development. Instead of repairing and maintaining legacy software in already deployed systems, software sustainment teams must now shift to designing and implementing new so…
 
Nikki - I'm so impressed with your wide range of cybersecurity - and with that experience you also are a Co-Founder and CEO. Can you talk a little bit about the transition from full time practitioner to business owner? Chris - If you had to list 1-2 top issues facing the Cybersecurity community within Government in particular? Nikki - What would yo…
 
This week in the AppSec News, Mike & John talk: Discourse SNS webhook RCE, a checklist for a Minimum Viable Secure Product, WhatsApp security assessment, privacy engineering specialties, & DevOps presentations! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw172…
 
Peter will talk to the challenges he's hearing from customers and partners about managing the security of APIs and what considerations organizations need to make in 2022 to better protect these growing ecosystems. This segment is sponsored by Imperva. Visit https://securityweekly.com/imperva to learn more about them! Visit https://www.securityweekl…
 
CSCP is bringing back season 1 in a newly remastered version. This is part 1 of the interview with Tanya Janca. Tanya Janca is an application security evangelist, a web application penetration tester and vulnerability assessor, trainer, public speaker, ethical hacker, the Co-Leader of the OWASP Ottawa chapter, a best-selling author, and independent…
 
Mentoring is a powerful dynamic that helps you reinforce your own knowledge base, contribute to the community, and expand your professional network, but how do you get started mentoring, and do it effectively? Join Nato Riley and the SimplyCyber community for an in-depth conversation on mentoring within the cybersecurity space and practical knowled…
 
In this special episode of Hanselminutes, co-produced in partnership with ACM ByteCast we welcome Jelani Nelson, Professor of Electrical Engineering and Computer Science and a member of the Theory Group at the University of California, Berkeley, and a Research Scientist at Google. Among his honors, he won the 2014 Presidential Early Career Award fo…
 
Will and Jonathan jump in this week to discuss how to get started with a career in DevOps and how companies can get things started at your company with DevOps. They discuss the pitfalls of outsourcing your devops and how DevOps should be working within your application space and within your organization. Panel Jonathan Hall Will Button Sponsors Dev…
 
Loading …

Quick Reference Guide

Copyright 2021 | Sitemap | Privacy Policy | Terms of Service
Google login Twitter login Classic login